Vulnerability-Lookup

CVE-2021-44906 (GCVE-0-2021-44906)

Vulnerability from cvelistv5 – Published: 2022-03-17 13:05 – Updated: 2024-08-04 04:32

Summary

Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).

Severity

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Assigner

mitre

References

6 references

URL	Tags
https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
https://github.com/Marynk/JavaScript-vulnerabilit…
https://github.com/substack/minimist/blob/master/…
https://stackoverflow.com/questions/8588563/addin…
https://github.com/substack/minimist/issues/164
https://security.netapp.com/advisory/ntap-2024062…

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T04:32:13.585Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://snyk.io/vuln/SNYK-JS-MINIMIST-559764"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/substack/minimist/blob/master/index.js#L69"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/substack/minimist/issues/164"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-21T19:07:14.002Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://snyk.io/vuln/SNYK-JS-MINIMIST-559764"
        },
        {
          "url": "https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip"
        },
        {
          "url": "https://github.com/substack/minimist/blob/master/index.js#L69"
        },
        {
          "url": "https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068"
        },
        {
          "url": "https://github.com/substack/minimist/issues/164"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2021-44906",
    "datePublished": "2022-03-17T13:05:57.000Z",
    "dateReserved": "2021-12-13T00:00:00.000Z",
    "dateUpdated": "2024-08-04T04:32:13.585Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2021-44906",
      "date": "2026-06-04",
      "epss": "0.00789",
      "percentile": "0.74219"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-44906\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2022-03-17T16:15:07.510\",\"lastModified\":\"2024-11-21T06:31:40.980\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).\"},{\"lang\":\"es\",\"value\":\"Minimist versiones anteriores a 1.2.5 incluy\u00e9ndola, es vulnerable a una Contaminaci\u00f3n de Prototipos por medio del archivo index.js, funci\u00f3n setKey() (l\u00edneas 69-95)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1321\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:substack:minimist:*:*:*:*:*:node.js:*:*\",\"versionEndExcluding\":\"1.2.6\",\"matchCriteriaId\":\"ECC2AD41-AACB-437B-95EB-D382C8C33F94\"}]}]}],\"references\":[{\"url\":\"https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/substack/minimist/blob/master/index.js#L69\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/substack/minimist/issues/164\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://snyk.io/vuln/SNYK-JS-MINIMIST-559764\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Not Applicable\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/substack/minimist/blob/master/index.js#L69\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/substack/minimist/issues/164\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://snyk.io/vuln/SNYK-JS-MINIMIST-559764\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Not Applicable\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2023:1533

Vulnerability from csaf_redhat - Published: 2023-03-30 13:06 - Updated: 2026-06-03 17:12

Summary

Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update

Severity

Important

Notes

Topic: An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs (14.21.3). Security Fix(es): * decode-uri-component: improper input validation resulting in DoS (CVE-2022-38900) * glob-parent: Regular Expression Denial of Service (CVE-2021-35065) * minimist: prototype pollution (CVE-2021-44906) * nodejs-minimatch: ReDoS via the braceExpand function (CVE-2022-3517) * c-ares: buffer overflow in config_sortlist() due to missing string length check (CVE-2022-4904) * express: "qs" prototype poisoning causes the hang of the node process (CVE-2022-24999) * http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability (CVE-2022-25881) * nodejs: HTTP Request Smuggling due to incorrect parsing of header fields (CVE-2022-35256) * nodejs: DNS rebinding in inspect via invalid octal IP address (CVE-2022-43548) * Node.js: Permissions policies can be bypassed via process.mainModule (CVE-2023-23918) * Node.js: insecure loading of ICU data through ICU_DATA environment variable (CVE-2023-23920) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2021-35065

A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service (ReDoS) attacks, affecting system availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44906

An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw (CVE-2021-44906) allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using a constructor or __proto__ payload, resulting in prototype pollution and loss of confidentiality, availability, and integrity.

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-3517

A vulnerability was found in the nodejs-minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-4904

A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-24999

A flaw was found in the express.js npm package of nodejs:14 module stream. Express.js Express is vulnerable to a denial of service caused by a prototype pollution flaw in qs. By adding or modifying properties of Object.prototype using a __proto__ or constructor payload, a remote attacker can cause a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-25881

A flaw was found in http-cache-semantics. When the server reads the cache policy from the request using this library, a Regular Expression Denial of Service occurs, caused by malicious request header values sent to the server.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-35256

A vulnerability was found in NodeJS due to improper validation of HTTP requests. The llhttp parser in the HTTP module in Node.js does not correctly handle header fields that are not terminated with CLRF. This issue may result in HTTP Request Smuggling. This flaw allows a remote attacker to send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-38900

A flaw was found in decode-uri-component. This issue occurs due to a specially crafted input, resulting in a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Important

CVE-2022-43548

A flaw was found in NodeJS. The issue occurs in the Node.js rebinding protector for --inspect that still allows invalid IP addresses, specifically, the octal format. This flaw allows an attacker to perform DNS rebinding and execute arbitrary code.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-350 - Reliance on Reverse DNS Resolution for a Security-Critical Action

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-23918

A privilege escalation vulnerability exists in Node.js <19.6.1, <18.14.1, <16.19.1 and <14.21.3 that made it possible to bypass the experimental Permissions (https://nodejs.org/api/permissions.html) feature in Node.js and access non authorized modules by using process.mainModule.require(). This only affects users who had enabled the experimental permissions option with --experimental-policy.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-863 - Incorrect Authorization

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-23920

An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.

4.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N

CWE-426 - Untrusted Search Path

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Low

References

70 references

URL	Category
https://access.redhat.com/errata/RHSA-2023:1533	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://bugzilla.redhat.com/show_bug.cgi?id=2130518	external
https://bugzilla.redhat.com/show_bug.cgi?id=2134609	external
https://bugzilla.redhat.com/show_bug.cgi?id=2140911	external
https://bugzilla.redhat.com/show_bug.cgi?id=2142823	external
https://bugzilla.redhat.com/show_bug.cgi?id=2150323	external
https://bugzilla.redhat.com/show_bug.cgi?id=2156324	external
https://bugzilla.redhat.com/show_bug.cgi?id=2165824	external
https://bugzilla.redhat.com/show_bug.cgi?id=2168631	external
https://bugzilla.redhat.com/show_bug.cgi?id=2170644	external
https://bugzilla.redhat.com/show_bug.cgi?id=2171935	external
https://bugzilla.redhat.com/show_bug.cgi?id=2172217	external
https://bugzilla.redhat.com/show_bug.cgi?id=2175828	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2021-35065	self
https://bugzilla.redhat.com/show_bug.cgi?id=2156324	external
https://www.cve.org/CVERecord?id=CVE-2021-35065	external
https://nvd.nist.gov/vuln/detail/CVE-2021-35065	external
https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-…	external
https://access.redhat.com/security/cve/CVE-2021-44906	self
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://www.cve.org/CVERecord?id=CVE-2021-44906	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44906	external
https://github.com/advisories/GHSA-xvch-5gv4-984h	external
https://access.redhat.com/security/cve/CVE-2022-3517	self
https://bugzilla.redhat.com/show_bug.cgi?id=2134609	external
https://www.cve.org/CVERecord?id=CVE-2022-3517	external
https://nvd.nist.gov/vuln/detail/CVE-2022-3517	external
https://access.redhat.com/security/cve/CVE-2022-4904	self
https://bugzilla.redhat.com/show_bug.cgi?id=2168631	external
https://www.cve.org/CVERecord?id=CVE-2022-4904	external
https://nvd.nist.gov/vuln/detail/CVE-2022-4904	external
https://github.com/c-ares/c-ares/issues/496	external
https://access.redhat.com/security/cve/CVE-2022-24999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2150323	external
https://www.cve.org/CVERecord?id=CVE-2022-24999	external
https://nvd.nist.gov/vuln/detail/CVE-2022-24999	external
https://github.com/expressjs/express/releases/tag…	external
https://github.com/ljharb/qs/pull/428	external
https://github.com/n8tz/CVE-2022-24999	external
https://access.redhat.com/security/cve/CVE-2022-25881	self
https://bugzilla.redhat.com/show_bug.cgi?id=2165824	external
https://www.cve.org/CVERecord?id=CVE-2022-25881	external
https://nvd.nist.gov/vuln/detail/CVE-2022-25881	external
https://access.redhat.com/security/cve/CVE-2022-35256	self
https://bugzilla.redhat.com/show_bug.cgi?id=2130518	external
https://www.cve.org/CVERecord?id=CVE-2022-35256	external
https://nvd.nist.gov/vuln/detail/CVE-2022-35256	external
https://nodejs.org/en/blog/vulnerability/septembe…	external
https://access.redhat.com/security/cve/CVE-2022-38900	self
https://bugzilla.redhat.com/show_bug.cgi?id=2170644	external
https://www.cve.org/CVERecord?id=CVE-2022-38900	external
https://nvd.nist.gov/vuln/detail/CVE-2022-38900	external
https://github.com/SamVerschueren/decode-uri-comp…	external
https://github.com/advisories/GHSA-w573-4hg7-7wgq	external
https://access.redhat.com/security/cve/CVE-2022-43548	self
https://bugzilla.redhat.com/show_bug.cgi?id=2140911	external
https://www.cve.org/CVERecord?id=CVE-2022-43548	external
https://nvd.nist.gov/vuln/detail/CVE-2022-43548	external
https://nodejs.org/en/blog/vulnerability/november…	external
https://access.redhat.com/security/cve/CVE-2023-23918	self
https://bugzilla.redhat.com/show_bug.cgi?id=2171935	external
https://www.cve.org/CVERecord?id=CVE-2023-23918	external
https://nvd.nist.gov/vuln/detail/CVE-2023-23918	external
https://access.redhat.com/security/cve/CVE-2023-23920	self
https://bugzilla.redhat.com/show_bug.cgi?id=2172217	external
https://www.cve.org/CVERecord?id=CVE-2023-23920	external
https://nvd.nist.gov/vuln/detail/CVE-2023-23920	external

Acknowledgments

VVX7

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nThe following packages have been upgraded to a later upstream version: nodejs (14.21.3).\n\nSecurity Fix(es):\n\n* decode-uri-component: improper input validation resulting in DoS (CVE-2022-38900)\n\n* glob-parent: Regular Expression Denial of Service (CVE-2021-35065)\n\n* minimist: prototype pollution (CVE-2021-44906)\n\n* nodejs-minimatch: ReDoS via the braceExpand function (CVE-2022-3517)\n\n* c-ares: buffer overflow in config_sortlist() due to missing string length check (CVE-2022-4904)\n\n* express: \"qs\" prototype poisoning causes the hang of the node process (CVE-2022-24999)\n\n* http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability (CVE-2022-25881)\n\n* nodejs: HTTP Request Smuggling due to incorrect parsing of header fields (CVE-2022-35256)\n\n* nodejs: DNS rebinding in inspect via invalid octal IP address (CVE-2022-43548)\n\n* Node.js: Permissions policies can be bypassed via process.mainModule (CVE-2023-23918)\n\n* Node.js: insecure loading of ICU data through ICU_DATA environment variable (CVE-2023-23920)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:1533",
        "url": "https://access.redhat.com/errata/RHSA-2023:1533"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2066009",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
      },
      {
        "category": "external",
        "summary": "2130518",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2130518"
      },
      {
        "category": "external",
        "summary": "2134609",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134609"
      },
      {
        "category": "external",
        "summary": "2140911",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140911"
      },
      {
        "category": "external",
        "summary": "2142823",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142823"
      },
      {
        "category": "external",
        "summary": "2150323",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150323"
      },
      {
        "category": "external",
        "summary": "2156324",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156324"
      },
      {
        "category": "external",
        "summary": "2165824",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165824"
      },
      {
        "category": "external",
        "summary": "2168631",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2168631"
      },
      {
        "category": "external",
        "summary": "2170644",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170644"
      },
      {
        "category": "external",
        "summary": "2171935",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171935"
      },
      {
        "category": "external",
        "summary": "2172217",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2172217"
      },
      {
        "category": "external",
        "summary": "2175828",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2175828"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1533.json"
      }
    ],
    "title": "Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2026-06-03T17:12:37+00:00",
      "generator": {
        "date": "2026-06-03T17:12:37+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2023:1533",
      "initial_release_date": "2023-03-30T13:06:07+00:00",
      "revision_history": [
        {
          "date": "2023-03-30T13:06:07+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-03-30T13:06:07+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-03T17:12:37+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:8.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=src\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
                "product": {
                  "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src (nodejs:14)",
                  "product_id": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-nodemon@2.0.20-3.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=src\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
                "product": {
                  "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src (nodejs:14)",
                  "product_id": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-packaging@23-3.module%2Bel8.3.0%2B6519%2B9f98ed83?arch=src\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch (nodejs:14)",
                  "product_id": "nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-docs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch (nodejs:14)",
                  "product_id": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-nodemon@2.0.20-3.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=noarch\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch (nodejs:14)",
                  "product_id": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-packaging@23-3.module%2Bel8.3.0%2B6519%2B9f98ed83?arch=noarch\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.4.0%2B18317%2B43f5ac16?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8040020230306170312:522a0ee4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14"
        },
        "product_reference": "nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14"
        },
        "product_reference": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14"
        },
        "product_reference": "nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14"
        },
        "product_reference": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14"
        },
        "product_reference": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-35065",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2022-12-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2156324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service (ReDoS) attacks, affecting system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glob-parent: Regular Expression Denial of Service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The glob-parent package is a transitive dependency and this is not used directly in any of the Red Hat products. Hence, the impact is reduced to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "RHBZ#2156324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-35065",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-35065",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-1314294",
          "url": "https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-1314294"
        }
      ],
      "release_date": "2022-12-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glob-parent: Regular Expression Denial of Service"
    },
    {
      "cve": "CVE-2021-44906",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "discovery_date": "2022-03-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2066009"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw (CVE-2021-44906) allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using a constructor or __proto__ payload, resulting in prototype pollution and loss of confidentiality, availability, and integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "minimist: prototype pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "As minimist is an argument parsing module for nodejs, exploitation of this vulnerability requires an attacker to influence which arguments are passed to nodejs when running a script. Red Hat products and services are designed in such a way that gaining this ability is not trivial. Additionally, the impact is limited by only enabling the pollution of functions, and not all generic objects.\n\nWithin Red Hat Satellite 6 this flaw has been rated as having a security impact of Low. It is not currently planned to be addressed there, as the minimist library is only included in the -doc subpackage and is part of test fixtures that are not in the execution path used by the rabl gem.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "RHBZ#2066009",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44906",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-xvch-5gv4-984h",
          "url": "https://github.com/advisories/GHSA-xvch-5gv4-984h"
        }
      ],
      "release_date": "2022-03-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "minimist: prototype pollution"
    },
    {
      "cve": "CVE-2022-3517",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2022-06-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2134609"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the nodejs-minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs-minimatch: ReDoS via the braceExpand function",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-3517"
        },
        {
          "category": "external",
          "summary": "RHBZ#2134609",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134609"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-3517",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3517",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3517"
        }
      ],
      "release_date": "2022-02-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs-minimatch: ReDoS via the braceExpand function"
    },
    {
      "cve": "CVE-2022-4904",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2023-02-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2168631"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "c-ares: buffer overflow in config_sortlist() due to missing string length check",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The severity of this vulnerability is not important but moderate because exploiting the vulnerability can lead to a disruption of the availability of an application, yet doesn\u2019t compromise data integrity or confidentiality. The opportunity for disruption is further limited due to the requirement that an application allows an attacker to be able to input both untrusted and unvalidated data. Exploiting this flaw requires an application to use the library in such a way that would allow untrusted and unvalidated input to be passed directly to ares_set_sortlist by an attacker. In the event that this is able to occur, the impact to RHEL is limited to a crash of the application due to the protections offered by default in RHEL systems such as Stack Smashing Protection (SSP).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "RHBZ#2168631",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2168631"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-4904",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-4904",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "https://github.com/c-ares/c-ares/issues/496",
          "url": "https://github.com/c-ares/c-ares/issues/496"
        }
      ],
      "release_date": "2022-12-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "c-ares: buffer overflow in config_sortlist() due to missing string length check"
    },
    {
      "cve": "CVE-2022-24999",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "discovery_date": "2022-12-02T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2150323"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the express.js npm package of nodejs:14 module stream. Express.js Express is vulnerable to a denial of service caused by a prototype pollution flaw in qs. By adding or modifying properties of Object.prototype using a __proto__ or constructor payload, a remote attacker can cause a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "express: \"qs\" prototype poisoning causes the hang of the node process",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "- The qs and express Package is not used by the OpenShift Container Platform console directly and is only a third-party package dependency. Hence, it is marked as wontfix. \nAs a result, any services that depend on Openshift for their use of qs and express are marked won\u0027t fix. \n- In OpenShift Service Mesh, \u0027qs\u0027 is hoisted from storybook and node-sass, both are dev dependencies, and the vulnerability is not exposed to end users. Hence marked as wontfix.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2150323",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150323"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "https://github.com/expressjs/express/releases/tag/4.17.3",
          "url": "https://github.com/expressjs/express/releases/tag/4.17.3"
        },
        {
          "category": "external",
          "summary": "https://github.com/ljharb/qs/pull/428",
          "url": "https://github.com/ljharb/qs/pull/428"
        },
        {
          "category": "external",
          "summary": "https://github.com/n8tz/CVE-2022-24999",
          "url": "https://github.com/n8tz/CVE-2022-24999"
        }
      ],
      "release_date": "2022-11-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "express: \"qs\" prototype poisoning causes the hang of the node process"
    },
    {
      "cve": "CVE-2022-25881",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2023-01-31T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2165824"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in http-cache-semantics. When the server reads the cache policy from the request using this library, a Regular Expression Denial of Service occurs, caused by malicious request header values sent to the server.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The impact of a succesfull exploiation of this vulnerability will only lead to a denial of service of the system,furthermore the exploitation will require an attacker to specifically craft a regular expression patterns in request headers (i.e. nontrivial input) that trigger pathological regex behavior but since most systems will have limits on header sizes or input validation that reduce the risk of triggering the extreme pathological regex cases which is why this has been marked as moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-25881"
        },
        {
          "category": "external",
          "summary": "RHBZ#2165824",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165824"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-25881",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-25881"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-25881",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25881"
        }
      ],
      "release_date": "2023-01-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "VVX7"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-35256",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2022-09-28T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2130518"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in NodeJS due to improper validation of HTTP requests. The llhttp parser in the HTTP module in Node.js does not correctly handle header fields that are not terminated with CLRF. This issue may result in HTTP Request Smuggling. This flaw allows a remote attacker to send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: HTTP Request Smuggling due to incorrect parsing of header fields",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "RHBZ#2130518",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2130518"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-35256",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256",
          "url": "https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256"
        }
      ],
      "release_date": "2022-09-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: HTTP Request Smuggling due to incorrect parsing of header fields"
    },
    {
      "cve": "CVE-2022-38900",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-02-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2170644"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in decode-uri-component. This issue occurs due to a specially crafted input, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "decode-uri-component: improper input validation resulting in DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "For OpenShift Container Platform (OCP), Advanced Clusters Management for Kubernetes (ACM) and Advanced Cluster Security (ACS), the NPM decode-uri-component package is only present in source repositories as a development dependency, it is not used in production. Therefore this vulnerability is rated Low for OCP and ACS.\n\nIn Red Hat OpenShift Logging the openshift-logging/kibana6-rhel8 container bundles many nodejs packages as a build time dependencies, including the decode-uri-component package. \nThe vulnerable code is not used, hence the impact to OpenShift Logging by this vulnerability is Low.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "RHBZ#2170644",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170644"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-38900",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-38900",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "https://github.com/SamVerschueren/decode-uri-component/issues/5",
          "url": "https://github.com/SamVerschueren/decode-uri-component/issues/5"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-w573-4hg7-7wgq",
          "url": "https://github.com/advisories/GHSA-w573-4hg7-7wgq"
        }
      ],
      "release_date": "2022-11-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "decode-uri-component: improper input validation resulting in DoS"
    },
    {
      "cve": "CVE-2022-43548",
      "cwe": {
        "id": "CWE-350",
        "name": "Reliance on Reverse DNS Resolution for a Security-Critical Action"
      },
      "discovery_date": "2022-11-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2140911"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NodeJS. The issue occurs in the Node.js rebinding protector for --inspect that still allows invalid IP addresses, specifically, the octal format. This flaw allows an attacker to perform DNS rebinding and execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: DNS rebinding in inspect via invalid octal IP address",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Redhat has marked this vulnerability as moderate for two primary reasons.\n1. The vulnerable inspect functionality might not be enabled, exposed, or reachable in many deployments.\n\n2.The code path might require very specific configurations or conditions (e.g. DNS rebinding, certain host/IP setups) that are rare in default environments.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "RHBZ#2140911",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140911"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-43548",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548",
          "url": "https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548"
        }
      ],
      "release_date": "2022-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: DNS rebinding in inspect via invalid octal IP address"
    },
    {
      "cve": "CVE-2023-23918",
      "cwe": {
        "id": "CWE-863",
        "name": "Incorrect Authorization"
      },
      "discovery_date": "2023-02-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2171935"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A privilege escalation vulnerability exists in Node.js \u003c19.6.1, \u003c18.14.1, \u003c16.19.1 and \u003c14.21.3 that made it possible to bypass the experimental Permissions (https://nodejs.org/api/permissions.html) feature in Node.js and access non authorized modules by using process.mainModule.require(). This only affects users who had enabled the experimental permissions option with --experimental-policy.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Node.js: Permissions policies can be bypassed via process.mainModule",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in question can only be triggered by an attacker if the victim has enabled --experimental-policy which in many node.js deployments won\u0027t ,which marks the conditions for exploitability outside of the attacker\u0027s control.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-23918"
        },
        {
          "category": "external",
          "summary": "RHBZ#2171935",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171935"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-23918",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
        }
      ],
      "release_date": "2023-02-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        },
        {
          "category": "workaround",
          "details": "Turn off the --experimental-policy in your Node.js deployment.",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Node.js: Permissions policies can be bypassed via process.mainModule"
    },
    {
      "cve": "CVE-2023-23920",
      "cwe": {
        "id": "CWE-426",
        "name": "Untrusted Search Path"
      },
      "discovery_date": "2023-02-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2172217"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An untrusted search path vulnerability exists in Node.js. \u003c19.6.1, \u003c18.14.1, \u003c16.19.1, and \u003c14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Node.js: insecure loading of ICU data through ICU_DATA environment variable",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
          "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-23920"
        },
        {
          "category": "external",
          "summary": "RHBZ#2172217",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2172217"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-23920",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
        }
      ],
      "release_date": "2023-02-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T13:06:07+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1533"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.4.0+18317+43f5ac16.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.4.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.aarch64::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.ppc64le::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.s390x::nodejs:14",
            "AppStream-8.4.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "Node.js: insecure loading of ICU data through ICU_DATA environment variable"
    }
  ]
}

RHSA-2023:1742

Vulnerability from csaf_redhat - Published: 2023-04-12 15:04 - Updated: 2026-06-03 17:12

Summary

Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update

Severity

Important

Notes

Topic: An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs (14.21.3). Security Fix(es): * decode-uri-component: improper input validation resulting in DoS (CVE-2022-38900) * glob-parent: Regular Expression Denial of Service (CVE-2021-35065) * nodejs: Improper handling of URI Subject Alternative Names (CVE-2021-44531) * nodejs: Certificate Verification Bypass via String Injection (CVE-2021-44532) * nodejs: Incorrect handling of certificate subject and issuer fields (CVE-2021-44533) * minimist: prototype pollution (CVE-2021-44906) * node-fetch: exposure of sensitive information to an unauthorized actor (CVE-2022-0235) * nodejs-minimatch: ReDoS via the braceExpand function (CVE-2022-3517) * c-ares: buffer overflow in config_sortlist() due to missing string length check (CVE-2022-4904) * express: "qs" prototype poisoning causes the hang of the node process (CVE-2022-24999) * http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability (CVE-2022-25881) * nodejs: HTTP Request Smuggling due to incorrect parsing of header fields (CVE-2022-35256) * nodejs: DNS rebinding in inspect via invalid octal IP address (CVE-2022-43548) * Node.js: Permissions policies can be bypassed via process.mainModule (CVE-2023-23918) * nodejs: Prototype pollution via console.table properties (CVE-2022-21824) * Node.js: insecure loading of ICU data through ICU_DATA environment variable (CVE-2023-23920) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-35065

A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service (ReDoS) attacks, affecting system availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44531

A flaw was found in node.js where it accepted a certificate's Subject Alternative Names (SAN) entry, as opposed to what is specified by the HTTPS protocol. This flaw allows an active person-in-the-middle to forge a certificate and impersonate a trusted host.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44532

It was found that node.js did not safely read the x509 certificate generalName format properly, resulting in data injection. A certificate could use a specially crafted extension in order to be successfully validated, permitting an attacker to impersonate a trusted host.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44533

A flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Names. This flaw allows a specially crafted x509 certificate to produce a false multi-value Relative Distinguished Name and to inject arbitrary data in node.js libraries.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44906

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-0235

A flaw was found in node-fetch. When following a redirect to a third-party domain, node-fetch was forwarding sensitive headers such as "Authorization," "WWW-Authenticate," and "Cookie" to potentially untrusted targets. This flaw leads to the exposure of sensitive information to an unauthorized actor.

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-3517

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-4904

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-21824

Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__". The prototype pollution has very limited control, in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js >= 12.22.9, >= 14.18.3, >= 16.13.2, and >= 17.3.1 use a null protoype for the object these properties are being assigned to.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Low

CVE-2022-24999

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-25881

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-35256

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-38900

A flaw was found in decode-uri-component. This issue occurs due to a specially crafted input, resulting in a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Important

CVE-2022-43548

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-350 - Reliance on Reverse DNS Resolution for a Security-Critical Action

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2023-23918

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-863 - Incorrect Authorization

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-23920

4.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N

CWE-426 - Untrusted Search Path

Affected products

Fixed 30 products

Product	Version	Remediation
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14	—	Vendor Fix fix
Unresolved product id: AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14	—	Vendor Fix fix

Threats

Impact Low

References

97 references

URL	Category
https://access.redhat.com/errata/RHSA-2023:1742	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2040839	external
https://bugzilla.redhat.com/show_bug.cgi?id=2040846	external
https://bugzilla.redhat.com/show_bug.cgi?id=2040856	external
https://bugzilla.redhat.com/show_bug.cgi?id=2040862	external
https://bugzilla.redhat.com/show_bug.cgi?id=2044591	external
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://bugzilla.redhat.com/show_bug.cgi?id=2130518	external
https://bugzilla.redhat.com/show_bug.cgi?id=2134609	external
https://bugzilla.redhat.com/show_bug.cgi?id=2140911	external
https://bugzilla.redhat.com/show_bug.cgi?id=2142822	external
https://bugzilla.redhat.com/show_bug.cgi?id=2150323	external
https://bugzilla.redhat.com/show_bug.cgi?id=2156324	external
https://bugzilla.redhat.com/show_bug.cgi?id=2165824	external
https://bugzilla.redhat.com/show_bug.cgi?id=2168631	external
https://bugzilla.redhat.com/show_bug.cgi?id=2170644	external
https://bugzilla.redhat.com/show_bug.cgi?id=2171935	external
https://bugzilla.redhat.com/show_bug.cgi?id=2172217	external
https://bugzilla.redhat.com/show_bug.cgi?id=2175827	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2021-35065	self
https://bugzilla.redhat.com/show_bug.cgi?id=2156324	external
https://www.cve.org/CVERecord?id=CVE-2021-35065	external
https://nvd.nist.gov/vuln/detail/CVE-2021-35065	external
https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-…	external
https://access.redhat.com/security/cve/CVE-2021-44531	self
https://bugzilla.redhat.com/show_bug.cgi?id=2040839	external
https://www.cve.org/CVERecord?id=CVE-2021-44531	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44531	external
https://nodejs.org/en/blog/vulnerability/jan-2022…	external
https://access.redhat.com/security/cve/CVE-2021-44532	self
https://bugzilla.redhat.com/show_bug.cgi?id=2040846	external
https://www.cve.org/CVERecord?id=CVE-2021-44532	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44532	external
https://access.redhat.com/security/cve/CVE-2021-44533	self
https://bugzilla.redhat.com/show_bug.cgi?id=2040856	external
https://www.cve.org/CVERecord?id=CVE-2021-44533	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44533	external
https://access.redhat.com/security/cve/CVE-2021-44906	self
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://www.cve.org/CVERecord?id=CVE-2021-44906	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44906	external
https://github.com/advisories/GHSA-xvch-5gv4-984h	external
https://access.redhat.com/security/cve/CVE-2022-0235	self
https://bugzilla.redhat.com/show_bug.cgi?id=2044591	external
https://www.cve.org/CVERecord?id=CVE-2022-0235	external
https://nvd.nist.gov/vuln/detail/CVE-2022-0235	external
https://huntr.dev/bounties/d26ab655-38d6-48b3-be1…	external
https://access.redhat.com/security/cve/CVE-2022-3517	self
https://bugzilla.redhat.com/show_bug.cgi?id=2134609	external
https://www.cve.org/CVERecord?id=CVE-2022-3517	external
https://nvd.nist.gov/vuln/detail/CVE-2022-3517	external
https://access.redhat.com/security/cve/CVE-2022-4904	self
https://bugzilla.redhat.com/show_bug.cgi?id=2168631	external
https://www.cve.org/CVERecord?id=CVE-2022-4904	external
https://nvd.nist.gov/vuln/detail/CVE-2022-4904	external
https://github.com/c-ares/c-ares/issues/496	external
https://access.redhat.com/security/cve/CVE-2022-21824	self
https://bugzilla.redhat.com/show_bug.cgi?id=2040862	external
https://www.cve.org/CVERecord?id=CVE-2022-21824	external
https://nvd.nist.gov/vuln/detail/CVE-2022-21824	external
https://access.redhat.com/security/cve/CVE-2022-24999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2150323	external
https://www.cve.org/CVERecord?id=CVE-2022-24999	external
https://nvd.nist.gov/vuln/detail/CVE-2022-24999	external
https://github.com/expressjs/express/releases/tag…	external
https://github.com/ljharb/qs/pull/428	external
https://github.com/n8tz/CVE-2022-24999	external
https://access.redhat.com/security/cve/CVE-2022-25881	self
https://bugzilla.redhat.com/show_bug.cgi?id=2165824	external
https://www.cve.org/CVERecord?id=CVE-2022-25881	external
https://nvd.nist.gov/vuln/detail/CVE-2022-25881	external
https://access.redhat.com/security/cve/CVE-2022-35256	self
https://bugzilla.redhat.com/show_bug.cgi?id=2130518	external
https://www.cve.org/CVERecord?id=CVE-2022-35256	external
https://nvd.nist.gov/vuln/detail/CVE-2022-35256	external
https://nodejs.org/en/blog/vulnerability/septembe…	external
https://access.redhat.com/security/cve/CVE-2022-38900	self
https://bugzilla.redhat.com/show_bug.cgi?id=2170644	external
https://www.cve.org/CVERecord?id=CVE-2022-38900	external
https://nvd.nist.gov/vuln/detail/CVE-2022-38900	external
https://github.com/SamVerschueren/decode-uri-comp…	external
https://github.com/advisories/GHSA-w573-4hg7-7wgq	external
https://access.redhat.com/security/cve/CVE-2022-43548	self
https://bugzilla.redhat.com/show_bug.cgi?id=2140911	external
https://www.cve.org/CVERecord?id=CVE-2022-43548	external
https://nvd.nist.gov/vuln/detail/CVE-2022-43548	external
https://nodejs.org/en/blog/vulnerability/november…	external
https://access.redhat.com/security/cve/CVE-2023-23918	self
https://bugzilla.redhat.com/show_bug.cgi?id=2171935	external
https://www.cve.org/CVERecord?id=CVE-2023-23918	external
https://nvd.nist.gov/vuln/detail/CVE-2023-23918	external
https://access.redhat.com/security/cve/CVE-2023-23920	self
https://bugzilla.redhat.com/show_bug.cgi?id=2172217	external
https://www.cve.org/CVERecord?id=CVE-2023-23920	external
https://nvd.nist.gov/vuln/detail/CVE-2023-23920	external

Acknowledgments

VVX7

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nThe following packages have been upgraded to a later upstream version: nodejs (14.21.3).\n\nSecurity Fix(es):\n\n* decode-uri-component: improper input validation resulting in DoS (CVE-2022-38900)\n\n* glob-parent: Regular Expression Denial of Service (CVE-2021-35065)\n\n* nodejs: Improper handling of URI Subject Alternative Names (CVE-2021-44531)\n\n* nodejs: Certificate Verification Bypass via String Injection (CVE-2021-44532)\n\n* nodejs: Incorrect handling of certificate subject and issuer fields (CVE-2021-44533)\n\n* minimist: prototype pollution (CVE-2021-44906)\n\n* node-fetch: exposure of sensitive information to an unauthorized actor (CVE-2022-0235)\n\n* nodejs-minimatch: ReDoS via the braceExpand function (CVE-2022-3517)\n\n* c-ares: buffer overflow in config_sortlist() due to missing string length check (CVE-2022-4904)\n\n* express: \"qs\" prototype poisoning causes the hang of the node process (CVE-2022-24999)\n\n* http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability (CVE-2022-25881)\n\n* nodejs: HTTP Request Smuggling due to incorrect parsing of header fields (CVE-2022-35256)\n\n* nodejs: DNS rebinding in inspect via invalid octal IP address (CVE-2022-43548)\n\n* Node.js: Permissions policies can be bypassed via process.mainModule (CVE-2023-23918)\n\n* nodejs: Prototype pollution via console.table properties (CVE-2022-21824)\n\n* Node.js: insecure loading of ICU data through ICU_DATA environment variable (CVE-2023-23920)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:1742",
        "url": "https://access.redhat.com/errata/RHSA-2023:1742"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2040839",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040839"
      },
      {
        "category": "external",
        "summary": "2040846",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040846"
      },
      {
        "category": "external",
        "summary": "2040856",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040856"
      },
      {
        "category": "external",
        "summary": "2040862",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040862"
      },
      {
        "category": "external",
        "summary": "2044591",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044591"
      },
      {
        "category": "external",
        "summary": "2066009",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
      },
      {
        "category": "external",
        "summary": "2130518",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2130518"
      },
      {
        "category": "external",
        "summary": "2134609",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134609"
      },
      {
        "category": "external",
        "summary": "2140911",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140911"
      },
      {
        "category": "external",
        "summary": "2142822",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2142822"
      },
      {
        "category": "external",
        "summary": "2150323",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150323"
      },
      {
        "category": "external",
        "summary": "2156324",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156324"
      },
      {
        "category": "external",
        "summary": "2165824",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165824"
      },
      {
        "category": "external",
        "summary": "2168631",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2168631"
      },
      {
        "category": "external",
        "summary": "2170644",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170644"
      },
      {
        "category": "external",
        "summary": "2171935",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171935"
      },
      {
        "category": "external",
        "summary": "2172217",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2172217"
      },
      {
        "category": "external",
        "summary": "2175827",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2175827"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1742.json"
      }
    ],
    "title": "Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2026-06-03T17:12:41+00:00",
      "generator": {
        "date": "2026-06-03T17:12:41+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2023:1742",
      "initial_release_date": "2023-04-12T15:04:47+00:00",
      "revision_history": [
        {
          "date": "2023-04-12T15:04:47+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-04-12T15:04:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-03T17:12:41+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=src\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
                "product": {
                  "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src (nodejs:14)",
                  "product_id": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-nodemon@2.0.20-3.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=src\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
                "product": {
                  "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src (nodejs:14)",
                  "product_id": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-packaging@23-3.module%2Bel8.3.0%2B6519%2B9f98ed83?arch=src\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch (nodejs:14)",
                  "product_id": "nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-docs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch (nodejs:14)",
                  "product_id": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-nodemon@2.0.20-3.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=noarch\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
                "product": {
                  "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch (nodejs:14)",
                  "product_id": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-packaging@23-3.module%2Bel8.3.0%2B6519%2B9f98ed83?arch=noarch\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debuginfo@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-debugsource@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-devel@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/nodejs-full-i18n@14.21.3-1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                "product": {
                  "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14)",
                  "product_id": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/npm@6.14.18-1.14.21.3.1.module%2Bel8.6.0%2B18532%2Bcbe6f646?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:14:8060020230306170237:ad008a3a"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14"
        },
        "product_reference": "nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14"
        },
        "product_reference": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14"
        },
        "product_reference": "nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14"
        },
        "product_reference": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14"
        },
        "product_reference": "nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64 (nodejs:14) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        },
        "product_reference": "npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
        "relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-35065",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2022-12-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2156324"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service (ReDoS) attacks, affecting system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "glob-parent: Regular Expression Denial of Service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The glob-parent package is a transitive dependency and this is not used directly in any of the Red Hat products. Hence, the impact is reduced to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "RHBZ#2156324",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2156324"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-35065",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-35065",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-35065"
        },
        {
          "category": "external",
          "summary": "https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-1314294",
          "url": "https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-1314294"
        }
      ],
      "release_date": "2022-12-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "glob-parent: Regular Expression Denial of Service"
    },
    {
      "cve": "CVE-2021-44531",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2022-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2040839"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in node.js where it accepted a certificate\u0027s Subject Alternative Names (SAN) entry, as opposed to what is specified by the HTTPS protocol. This flaw allows an active person-in-the-middle to forge a certificate and impersonate a trusted host.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: Improper handling of URI Subject Alternative Names",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Quay from version 3.4 consumes nodejs from RHEL, so security tracking is provided by the container health index on the customer portal [1]. Additionally there is no impact from this issue on Quay 3.3 and 3.2 because nodejs is only used at build time and is no longer shipped, starting with Quay 3.5 [2].\n[1] https://catalog.redhat.com/software/containers/quay/quay-rhel8/600e03aadd19c7786c43ae49?container-tabs=security\n[2] https://issues.redhat.com/browse/PROJQUAY-1409\nTherefore Quay component is marked as \"Will not fix\" with impact LOW.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2040839",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040839"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/",
          "url": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/"
        }
      ],
      "release_date": "2022-01-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: Improper handling of URI Subject Alternative Names"
    },
    {
      "cve": "CVE-2021-44532",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2022-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2040846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that node.js did not safely read the x509 certificate generalName format properly, resulting in data injection. A certificate could use a specially crafted extension in order to be successfully validated, permitting an attacker to impersonate a trusted host.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: Certificate Verification Bypass via String Injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Quay from version 3.4 consumes nodejs from RHEL, so security tracking is provided by the container health index on the customer portal [1]. Additionally there is no impact from this issue on Quay 3.3 and 3.2 because nodejs is only used at build time and is no longer shipped, starting with Quay 3.5 [2].\n[1] https://catalog.redhat.com/software/containers/quay/quay-rhel8/600e03aadd19c7786c43ae49?container-tabs=security\n[2] https://issues.redhat.com/browse/PROJQUAY-1409\nTherefore Quay component is marked as \"Will not fix\" with impact LOW.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44532"
        },
        {
          "category": "external",
          "summary": "RHBZ#2040846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44532",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44532"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
        }
      ],
      "release_date": "2022-01-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: Certificate Verification Bypass via String Injection"
    },
    {
      "cve": "CVE-2021-44533",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2022-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2040856"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Names. This flaw allows a specially crafted x509 certificate to produce a false multi-value Relative Distinguished Name and to inject arbitrary data in node.js libraries.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: Incorrect handling of certificate subject and issuer fields",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Quay from version 3.4 consumes nodejs from RHEL, so security tracking is provided by the container health index on the customer portal [1]. Additionally, there is no impact from this issue on Quay 3.3 and 3.2 because nodejs is only used at build time and is no longer shipped, starting with Quay 3.5 [2].\n[1] https://catalog.redhat.com/software/containers/quay/quay-rhel8/600e03aadd19c7786c43ae49?container-tabs=security\n[2] https://issues.redhat.com/browse/PROJQUAY-1409\nTherefore, the Quay component is marked as \"Will not fix\" with impact LOW.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44533"
        },
        {
          "category": "external",
          "summary": "RHBZ#2040856",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040856"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44533",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44533"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44533",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44533"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/",
          "url": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/"
        }
      ],
      "release_date": "2022-01-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: Incorrect handling of certificate subject and issuer fields"
    },
    {
      "cve": "CVE-2021-44906",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "discovery_date": "2022-03-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2066009"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw (CVE-2021-44906) allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using a constructor or __proto__ payload, resulting in prototype pollution and loss of confidentiality, availability, and integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "minimist: prototype pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "As minimist is an argument parsing module for nodejs, exploitation of this vulnerability requires an attacker to influence which arguments are passed to nodejs when running a script. Red Hat products and services are designed in such a way that gaining this ability is not trivial. Additionally, the impact is limited by only enabling the pollution of functions, and not all generic objects.\n\nWithin Red Hat Satellite 6 this flaw has been rated as having a security impact of Low. It is not currently planned to be addressed there, as the minimist library is only included in the -doc subpackage and is part of test fixtures that are not in the execution path used by the rabl gem.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "RHBZ#2066009",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44906",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-xvch-5gv4-984h",
          "url": "https://github.com/advisories/GHSA-xvch-5gv4-984h"
        }
      ],
      "release_date": "2022-03-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "minimist: prototype pollution"
    },
    {
      "cve": "CVE-2022-0235",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "discovery_date": "2022-01-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2044591"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in node-fetch. When following a redirect to a third-party domain, node-fetch was forwarding sensitive headers such as \"Authorization,\" \"WWW-Authenticate,\" and \"Cookie\" to potentially untrusted targets. This flaw leads to the exposure of sensitive information to an unauthorized actor.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "node-fetch: exposure of sensitive information to an unauthorized actor",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw is out of support scope for dotnet-5.0. For more information about Dotnet product support scope, please see https://access.redhat.com/support/policy/updates/net-core",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "RHBZ#2044591",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044591"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-0235",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0235",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/",
          "url": "https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/"
        }
      ],
      "release_date": "2022-01-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "node-fetch: exposure of sensitive information to an unauthorized actor"
    },
    {
      "cve": "CVE-2022-3517",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2022-06-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2134609"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in the nodejs-minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs-minimatch: ReDoS via the braceExpand function",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-3517"
        },
        {
          "category": "external",
          "summary": "RHBZ#2134609",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2134609"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-3517",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3517",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3517"
        }
      ],
      "release_date": "2022-02-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs-minimatch: ReDoS via the braceExpand function"
    },
    {
      "cve": "CVE-2022-4904",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2023-02-09T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2168631"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "c-ares: buffer overflow in config_sortlist() due to missing string length check",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The severity of this vulnerability is not important but moderate because exploiting the vulnerability can lead to a disruption of the availability of an application, yet doesn\u2019t compromise data integrity or confidentiality. The opportunity for disruption is further limited due to the requirement that an application allows an attacker to be able to input both untrusted and unvalidated data. Exploiting this flaw requires an application to use the library in such a way that would allow untrusted and unvalidated input to be passed directly to ares_set_sortlist by an attacker. In the event that this is able to occur, the impact to RHEL is limited to a crash of the application due to the protections offered by default in RHEL systems such as Stack Smashing Protection (SSP).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "RHBZ#2168631",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2168631"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-4904",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-4904",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4904"
        },
        {
          "category": "external",
          "summary": "https://github.com/c-ares/c-ares/issues/496",
          "url": "https://github.com/c-ares/c-ares/issues/496"
        }
      ],
      "release_date": "2022-12-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "c-ares: buffer overflow in config_sortlist() due to missing string length check"
    },
    {
      "cve": "CVE-2022-21824",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2022-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2040862"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Due to the formatting logic of the \"console.table()\" function it was not safe to allow user controlled input to be passed to the \"properties\" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be \"__proto__\". The prototype pollution has very limited control, in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js \u003e= 12.22.9, \u003e= 14.18.3, \u003e= 16.13.2, and \u003e= 17.3.1 use a null protoype for the object these properties are being assigned to.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: Prototype pollution via console.table properties",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Quay from version 3.4 consumes nodejs from RHEL, so security tracking is provided by the container health index on the customer portal [1]. Additionally there is no impact from this issue on Quay 3.3 and 3.2 because nodejs is only used at build time and is no longer shipped, starting with Quay 3.5 [2].\n[1] https://catalog.redhat.com/software/containers/quay/quay-rhel8/600e03aadd19c7786c43ae49?container-tabs=security\n[2] https://issues.redhat.com/browse/PROJQUAY-1409\nTherefore Quay component is marked as \"Will not fix\".",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-21824"
        },
        {
          "category": "external",
          "summary": "RHBZ#2040862",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2040862"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-21824",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-21824"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-21824",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21824"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/",
          "url": "https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/"
        }
      ],
      "release_date": "2022-01-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "nodejs: Prototype pollution via console.table properties"
    },
    {
      "cve": "CVE-2022-24999",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "discovery_date": "2022-12-02T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2150323"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the express.js npm package of nodejs:14 module stream. Express.js Express is vulnerable to a denial of service caused by a prototype pollution flaw in qs. By adding or modifying properties of Object.prototype using a __proto__ or constructor payload, a remote attacker can cause a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "express: \"qs\" prototype poisoning causes the hang of the node process",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "- The qs and express Package is not used by the OpenShift Container Platform console directly and is only a third-party package dependency. Hence, it is marked as wontfix. \nAs a result, any services that depend on Openshift for their use of qs and express are marked won\u0027t fix. \n- In OpenShift Service Mesh, \u0027qs\u0027 is hoisted from storybook and node-sass, both are dev dependencies, and the vulnerability is not exposed to end users. Hence marked as wontfix.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2150323",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150323"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24999"
        },
        {
          "category": "external",
          "summary": "https://github.com/expressjs/express/releases/tag/4.17.3",
          "url": "https://github.com/expressjs/express/releases/tag/4.17.3"
        },
        {
          "category": "external",
          "summary": "https://github.com/ljharb/qs/pull/428",
          "url": "https://github.com/ljharb/qs/pull/428"
        },
        {
          "category": "external",
          "summary": "https://github.com/n8tz/CVE-2022-24999",
          "url": "https://github.com/n8tz/CVE-2022-24999"
        }
      ],
      "release_date": "2022-11-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "express: \"qs\" prototype poisoning causes the hang of the node process"
    },
    {
      "cve": "CVE-2022-25881",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2023-01-31T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2165824"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in http-cache-semantics. When the server reads the cache policy from the request using this library, a Regular Expression Denial of Service occurs, caused by malicious request header values sent to the server.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The impact of a succesfull exploiation of this vulnerability will only lead to a denial of service of the system,furthermore the exploitation will require an attacker to specifically craft a regular expression patterns in request headers (i.e. nontrivial input) that trigger pathological regex behavior but since most systems will have limits on header sizes or input validation that reduce the risk of triggering the extreme pathological regex cases which is why this has been marked as moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-25881"
        },
        {
          "category": "external",
          "summary": "RHBZ#2165824",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165824"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-25881",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-25881"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-25881",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25881"
        }
      ],
      "release_date": "2023-01-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "VVX7"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-35256",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2022-09-28T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2130518"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in NodeJS due to improper validation of HTTP requests. The llhttp parser in the HTTP module in Node.js does not correctly handle header fields that are not terminated with CLRF. This issue may result in HTTP Request Smuggling. This flaw allows a remote attacker to send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: HTTP Request Smuggling due to incorrect parsing of header fields",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "RHBZ#2130518",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2130518"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-35256",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256",
          "url": "https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256"
        }
      ],
      "release_date": "2022-09-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: HTTP Request Smuggling due to incorrect parsing of header fields"
    },
    {
      "cve": "CVE-2022-38900",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-02-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2170644"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in decode-uri-component. This issue occurs due to a specially crafted input, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "decode-uri-component: improper input validation resulting in DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "For OpenShift Container Platform (OCP), Advanced Clusters Management for Kubernetes (ACM) and Advanced Cluster Security (ACS), the NPM decode-uri-component package is only present in source repositories as a development dependency, it is not used in production. Therefore this vulnerability is rated Low for OCP and ACS.\n\nIn Red Hat OpenShift Logging the openshift-logging/kibana6-rhel8 container bundles many nodejs packages as a build time dependencies, including the decode-uri-component package. \nThe vulnerable code is not used, hence the impact to OpenShift Logging by this vulnerability is Low.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "RHBZ#2170644",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170644"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-38900",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-38900",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-38900"
        },
        {
          "category": "external",
          "summary": "https://github.com/SamVerschueren/decode-uri-component/issues/5",
          "url": "https://github.com/SamVerschueren/decode-uri-component/issues/5"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-w573-4hg7-7wgq",
          "url": "https://github.com/advisories/GHSA-w573-4hg7-7wgq"
        }
      ],
      "release_date": "2022-11-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "decode-uri-component: improper input validation resulting in DoS"
    },
    {
      "cve": "CVE-2022-43548",
      "cwe": {
        "id": "CWE-350",
        "name": "Reliance on Reverse DNS Resolution for a Security-Critical Action"
      },
      "discovery_date": "2022-11-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2140911"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NodeJS. The issue occurs in the Node.js rebinding protector for --inspect that still allows invalid IP addresses, specifically, the octal format. This flaw allows an attacker to perform DNS rebinding and execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nodejs: DNS rebinding in inspect via invalid octal IP address",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Redhat has marked this vulnerability as moderate for two primary reasons.\n1. The vulnerable inspect functionality might not be enabled, exposed, or reachable in many deployments.\n\n2.The code path might require very specific configurations or conditions (e.g. DNS rebinding, certain host/IP setups) that are rare in default environments.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "RHBZ#2140911",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140911"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-43548",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548",
          "url": "https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548"
        }
      ],
      "release_date": "2022-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nodejs: DNS rebinding in inspect via invalid octal IP address"
    },
    {
      "cve": "CVE-2023-23918",
      "cwe": {
        "id": "CWE-863",
        "name": "Incorrect Authorization"
      },
      "discovery_date": "2023-02-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2171935"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A privilege escalation vulnerability exists in Node.js \u003c19.6.1, \u003c18.14.1, \u003c16.19.1 and \u003c14.21.3 that made it possible to bypass the experimental Permissions (https://nodejs.org/api/permissions.html) feature in Node.js and access non authorized modules by using process.mainModule.require(). This only affects users who had enabled the experimental permissions option with --experimental-policy.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Node.js: Permissions policies can be bypassed via process.mainModule",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in question can only be triggered by an attacker if the victim has enabled --experimental-policy which in many node.js deployments won\u0027t ,which marks the conditions for exploitability outside of the attacker\u0027s control.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-23918"
        },
        {
          "category": "external",
          "summary": "RHBZ#2171935",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171935"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-23918",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
        }
      ],
      "release_date": "2023-02-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        },
        {
          "category": "workaround",
          "details": "Turn off the --experimental-policy in your Node.js deployment.",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Node.js: Permissions policies can be bypassed via process.mainModule"
    },
    {
      "cve": "CVE-2023-23920",
      "cwe": {
        "id": "CWE-426",
        "name": "Untrusted Search Path"
      },
      "discovery_date": "2023-02-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2172217"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An untrusted search path vulnerability exists in Node.js. \u003c19.6.1, \u003c18.14.1, \u003c16.19.1, and \u003c14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Node.js: insecure loading of ICU data through ICU_DATA environment variable",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
          "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
          "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-23920"
        },
        {
          "category": "external",
          "summary": "RHBZ#2172217",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2172217"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-23920",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
        }
      ],
      "release_date": "2023-02-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-04-12T15:04:47+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1742"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debuginfo-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-debugsource-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-devel-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-docs-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-full-i18n-1:14.21.3-1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-nodemon-0:2.0.20-3.module+el8.6.0+18532+cbe6f646.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.noarch::nodejs:14",
            "AppStream-8.6.0.Z.EUS:nodejs-packaging-0:23-3.module+el8.3.0+6519+9f98ed83.src::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.aarch64::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.ppc64le::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.s390x::nodejs:14",
            "AppStream-8.6.0.Z.EUS:npm-1:6.14.18-1.14.21.3.1.module+el8.6.0+18532+cbe6f646.x86_64::nodejs:14"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "Node.js: insecure loading of ICU data through ICU_DATA environment variable"
    }
  ]
}

RHSA-2025:1747

Vulnerability from csaf_redhat - Published: 2025-02-24 00:08 - Updated: 2026-06-02 17:44

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.12 security update

Severity

Critical

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.3.12 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.11, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.12 Release Notes for information about the most significant bug fixes and enhancements included in this release. Security Fix(es): * velocity: arbitrary code execution when attacker is able to modify templates [eap-7.3.z] (CVE-2020-13936) * CXF: Apache CXF: directory listing / code exfiltration [eap-7.3.z] (CVE-2022-46363) * sshd-common: mina-sshd: Java unsafe deserialization vulnerability [eap-7.3.z] (CVE-2022-45047) * log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value [eap-7.3.z] (CVE-2021-44228) * commons-text: apache-commons-text: variable interpolation RCE [eap-7.3.z] (CVE-2022-42889) * log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228) [eap-7.3.z] (CVE-2021-45046) * org.jboss.hal-hal-parent: minimist: prototype pollution [eap-7.3.z] (CVE-2021-44906) * jackson-databind: use of deeply nested arrays [eap-7.3.z] (CVE-2022-42004) * snakeyaml: Constructor Deserialization Remote Code Execution [eap-7.3.z] (CVE-2022-1471) * codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS [eap-7.3.z] (CVE-2022-41881) * jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS [eap-7.3.z] (CVE-2022-42003) * jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos [eap-7.3.z] (CVE-2022-45693) * h2: Remote Code Execution in Console [eap-7.3.z] (CVE-2021-42392) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-13936

A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2021-42392

A flaw was found in h2. The org.h2.util.JdbcUtils.getConnection method of the H2 database takes as parameters the class name of the driver and URL of the database. This flaw allows an attacker to use this URL to send another server’s code, causing remote code execution. This issue is exploited through various attack vectors, most notably through the H2 Console, which leads to unauthenticated remote code execution.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-44228

A flaw was found in the Apache Log4j logging library in versions from 2.0.0 and before 2.15.0. A remote attacker who can control log messages or log message parameters, can execute arbitrary code on the server via JNDI LDAP endpoint.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Critical

CVE-2021-44906

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2021-45046

A flaw was found in the Apache Log4j logging library in versions from 2.0.0 and before 2.16.0. A remote attacker with control over Thread Context Map (MDC) input data could craft malicious input using a JNDI Lookup pattern resulting in remote code execution (RCE) in a limited number of environments.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-917 - Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Exploit Status CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Impact Moderate

CVE-2022-1471

A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Fixed 27 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix

Known not affected 25 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—

Threats

Impact Important

CVE-2022-41881

A flaw was found in codec-haproxy from the Netty project. This flaw allows an attacker to build a malformed crafted message and cause infinite recursion, causing stack exhaustion and leading to a denial of service (DoS).

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-674 - Uncontrolled Recursion

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2022-42003

A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Fixed 27 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix

Known not affected 25 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—

Threats

Impact Moderate

CVE-2022-42004

A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer._deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices for deserialization.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Fixed 27 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix

Known not affected 25 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—

Threats

Impact Moderate

CVE-2022-42889

A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Critical

CVE-2022-45047

A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2022-45693

A flaw was found in Jettison, where it is vulnerable to a denial of service caused by a stack-based buffer overflow. By sending a specially-crafted request using the map parameter, a remote attacker can cause a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 27 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix

Known not affected 25 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch		—

Threats

Impact Moderate

CVE-2022-46363

A vulnerability was found in Apache CXF that could allow an attacker to perform a remote directory listing or code exfiltration. This issue only applies when the CXFServlet is configured with both the static-resources-list and redirect-query-check attributes. These attributes are not supposed to be used together, so the issue can only occur if the CXF service is misconfigured.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-20 - Improper Input Validation

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Moderate

References

87 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:1747	self
https://access.redhat.com/security/vulnerabilitie…	external
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1937440	external
https://bugzilla.redhat.com/show_bug.cgi?id=2030932	external
https://bugzilla.redhat.com/show_bug.cgi?id=2032580	external
https://bugzilla.redhat.com/show_bug.cgi?id=2039403	external
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://bugzilla.redhat.com/show_bug.cgi?id=2135244	external
https://bugzilla.redhat.com/show_bug.cgi?id=2135247	external
https://bugzilla.redhat.com/show_bug.cgi?id=2135435	external
https://bugzilla.redhat.com/show_bug.cgi?id=2145194	external
https://bugzilla.redhat.com/show_bug.cgi?id=2150009	external
https://bugzilla.redhat.com/show_bug.cgi?id=2153379	external
https://bugzilla.redhat.com/show_bug.cgi?id=2155681	external
https://bugzilla.redhat.com/show_bug.cgi?id=2155970	external
https://issues.redhat.com/browse/JBEAP-28581	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-13936	self
https://bugzilla.redhat.com/show_bug.cgi?id=1937440	external
https://www.cve.org/CVERecord?id=CVE-2020-13936	external
https://nvd.nist.gov/vuln/detail/CVE-2020-13936	external
https://access.redhat.com/security/cve/CVE-2021-42392	self
https://bugzilla.redhat.com/show_bug.cgi?id=2039403	external
https://www.cve.org/CVERecord?id=CVE-2021-42392	external
https://nvd.nist.gov/vuln/detail/CVE-2021-42392	external
https://github.com/h2database/h2database/security…	external
https://access.redhat.com/security/cve/CVE-2021-44228	self
https://bugzilla.redhat.com/show_bug.cgi?id=2030932	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.cve.org/CVERecord?id=CVE-2021-44228	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44228	external
https://github.com/advisories/GHSA-jfh8-c2jp-5v3q	external
https://logging.apache.org/log4j/2.x/security.html	external
https://www.lunasec.io/docs/blog/log4j-zero-day/	external
https://www.cisa.gov/known-exploited-vulnerabilit…	external
https://access.redhat.com/security/cve/CVE-2021-44906	self
https://bugzilla.redhat.com/show_bug.cgi?id=2066009	external
https://www.cve.org/CVERecord?id=CVE-2021-44906	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44906	external
https://github.com/advisories/GHSA-xvch-5gv4-984h	external
https://access.redhat.com/security/cve/CVE-2021-45046	self
https://bugzilla.redhat.com/show_bug.cgi?id=2032580	external
https://www.cve.org/CVERecord?id=CVE-2021-45046	external
https://nvd.nist.gov/vuln/detail/CVE-2021-45046	external
https://access.redhat.com/security/cve/CVE-2021-44228	external
https://www.openwall.com/lists/oss-security/2021/…	external
https://access.redhat.com/security/cve/CVE-2022-1471	self
https://bugzilla.redhat.com/show_bug.cgi?id=2150009	external
https://www.cve.org/CVERecord?id=CVE-2022-1471	external
https://nvd.nist.gov/vuln/detail/CVE-2022-1471	external
https://github.com/google/security-research/secur…	external
https://access.redhat.com/security/cve/CVE-2022-41881	self
https://bugzilla.redhat.com/show_bug.cgi?id=2153379	external
https://www.cve.org/CVERecord?id=CVE-2022-41881	external
https://nvd.nist.gov/vuln/detail/CVE-2022-41881	external
https://access.redhat.com/security/cve/CVE-2022-42003	self
https://bugzilla.redhat.com/show_bug.cgi?id=2135244	external
https://www.cve.org/CVERecord?id=CVE-2022-42003	external
https://nvd.nist.gov/vuln/detail/CVE-2022-42003	external
https://access.redhat.com/security/cve/CVE-2022-42004	self
https://bugzilla.redhat.com/show_bug.cgi?id=2135247	external
https://www.cve.org/CVERecord?id=CVE-2022-42004	external
https://nvd.nist.gov/vuln/detail/CVE-2022-42004	external
https://access.redhat.com/security/cve/CVE-2022-42889	self
https://bugzilla.redhat.com/show_bug.cgi?id=2135435	external
https://www.cve.org/CVERecord?id=CVE-2022-42889	external
https://nvd.nist.gov/vuln/detail/CVE-2022-42889	external
https://blogs.apache.org/security/entry/cve-2022-42889	external
https://lists.apache.org/thread/n2bd4vdsgkqh2tm14…	external
https://seclists.org/oss-sec/2022/q4/22	external
https://access.redhat.com/security/cve/CVE-2022-45047	self
https://bugzilla.redhat.com/show_bug.cgi?id=2145194	external
https://www.cve.org/CVERecord?id=CVE-2022-45047	external
https://nvd.nist.gov/vuln/detail/CVE-2022-45047	external
https://www.mail-archive.com/dev@mina.apache.org/…	external
https://access.redhat.com/security/cve/CVE-2022-45693	self
https://bugzilla.redhat.com/show_bug.cgi?id=2155970	external
https://www.cve.org/CVERecord?id=CVE-2022-45693	external
https://nvd.nist.gov/vuln/detail/CVE-2022-45693	external
https://access.redhat.com/security/cve/CVE-2022-46363	self
https://bugzilla.redhat.com/show_bug.cgi?id=2155681	external
https://www.cve.org/CVERecord?id=CVE-2022-46363	external
https://nvd.nist.gov/vuln/detail/CVE-2022-46363	external
https://lists.apache.org/thread/pdzo1qgyplf4y523t…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat\nJBoss Enterprise Application Platform 7.3.12 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.11, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.12 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* velocity: arbitrary code execution when attacker is able to modify templates [eap-7.3.z] (CVE-2020-13936)\n\n* CXF: Apache CXF: directory listing / code exfiltration [eap-7.3.z] (CVE-2022-46363)\n\n* sshd-common: mina-sshd: Java unsafe deserialization vulnerability [eap-7.3.z] (CVE-2022-45047)\n\n* log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value [eap-7.3.z] (CVE-2021-44228)\n\n* commons-text: apache-commons-text: variable interpolation RCE [eap-7.3.z] (CVE-2022-42889)\n\n* log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228) [eap-7.3.z] (CVE-2021-45046)\n\n* org.jboss.hal-hal-parent: minimist: prototype pollution [eap-7.3.z] (CVE-2021-44906)\n\n* jackson-databind: use of deeply nested arrays [eap-7.3.z] (CVE-2022-42004)\n\n* snakeyaml: Constructor Deserialization Remote Code Execution [eap-7.3.z] (CVE-2022-1471)\n\n* codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS [eap-7.3.z] (CVE-2022-41881)\n\n* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS [eap-7.3.z] (CVE-2022-42003)\n\n* jettison:  If the value in map is the map\u0027s self, the new new JSONObject(map) cause StackOverflowError which may lead to dos [eap-7.3.z] (CVE-2022-45693)\n\n* h2: Remote Code Execution in Console [eap-7.3.z] (CVE-2021-42392)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:1747",
        "url": "https://access.redhat.com/errata/RHSA-2025:1747"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-009",
        "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-009"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "1937440",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
      },
      {
        "category": "external",
        "summary": "2030932",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030932"
      },
      {
        "category": "external",
        "summary": "2032580",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2032580"
      },
      {
        "category": "external",
        "summary": "2039403",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039403"
      },
      {
        "category": "external",
        "summary": "2066009",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
      },
      {
        "category": "external",
        "summary": "2135244",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135244"
      },
      {
        "category": "external",
        "summary": "2135247",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135247"
      },
      {
        "category": "external",
        "summary": "2135435",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135435"
      },
      {
        "category": "external",
        "summary": "2145194",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2145194"
      },
      {
        "category": "external",
        "summary": "2150009",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150009"
      },
      {
        "category": "external",
        "summary": "2153379",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153379"
      },
      {
        "category": "external",
        "summary": "2155681",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2155681"
      },
      {
        "category": "external",
        "summary": "2155970",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2155970"
      },
      {
        "category": "external",
        "summary": "JBEAP-28581",
        "url": "https://issues.redhat.com/browse/JBEAP-28581"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_1747.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.12 security update",
    "tracking": {
      "current_release_date": "2026-06-02T17:44:09+00:00",
      "generator": {
        "date": "2026-06-02T17:44:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2025:1747",
      "initial_release_date": "2025-02-24T00:08:38+00:00",
      "revision_history": [
        {
          "date": "2025-02-24T00:08:38+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-02-24T00:08:38+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-02T17:44:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
                  "product_id": "7Server-JBEAP-7.3-EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.2.17-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-databind@2.10.4-4.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
                  "product_id": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-4.Final_redhat_00002.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-snakeyaml@1.33.0-1.SP1_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
                "product": {
                  "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
                  "product_id": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jettison@1.5.2-2.redhat_00002.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-4.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-2.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.10.4-2.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.10.4-2.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_id": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
                  "product_id": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.12-3.GA_redhat_00002.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.11.6-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.2.17-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-databind@2.10.4-4.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-4.Final_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.63-4.Final_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-snakeyaml@1.33.0-1.SP1_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jettison@1.5.2-2.redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.10.4-4.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-4.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.12-3.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.3.12-3.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.3.12-3.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.3.12-3.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.3.12-3.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-client@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-client-microprofile@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.11.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src"
        },
        "product_reference": "eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-13936",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2021-03-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1937440"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "velocity: arbitrary code execution when attacker is able to modify templates",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "OpenShift Container Platform (OCP) openshift-logging/elasticsearch6-rhel8 container does contain a vulnerable version of velocity. The references to the library only occur in the x-pack component which is an enterprise-only feature of Elasticsearch - hence it has been marked as wontfix as this time and may be fixed in a future release. Additionally the hive container only references velocity in the testutils of the code but the code still exists in the container, as such it has been given a Moderate impact.\n\n* Velocity as shipped with Red Hat Enterprise Linux 6 is not affected because it does not contain the vulnerable code.\n\n* Velocity as shipped with Red Hat Enterprise Linux 7 contains a vulnerable version, but it is used as a dependency for IdM/ipa, which does not use the vulnerable functionality. It has been marked as Moderate for this reason.\n\n* Although velocity shipped in Red Hat Enterprise Linux 8\u0027s pki-deps:10.6 for IdM/ipa is a vulnerable version, the vulnerable code is not used by pki. It has been marked as Low for this reason.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-13936"
        },
        {
          "category": "external",
          "summary": "RHBZ#1937440",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-13936",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936"
        }
      ],
      "release_date": "2021-03-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "velocity: arbitrary code execution when attacker is able to modify templates"
    },
    {
      "cve": "CVE-2021-42392",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "discovery_date": "2022-01-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2039403"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in h2. The org.h2.util.JdbcUtils.getConnection method of the H2 database takes as parameters the class name of the driver and URL of the database. This flaw allows an attacker to use this URL to send another server\u2019s code, causing remote code execution. This issue is exploited through various attack vectors, most notably through the H2 Console, which leads to unauthenticated remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "h2: Remote Code Execution in Console",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "In OpenShift Container Platform (OCP) the openshift4/ose-metering-presto container image ships the vulnerable version of h2, but as it uses default configuration the impact by this vulnerability is LOW. Additionally, the Presto component is part of the OCP Metering stack and since the release of OCP 4.6, the Metering product has been deprecated [1], hence the affected component is marked as wontfix.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-42392"
        },
        {
          "category": "external",
          "summary": "RHBZ#2039403",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039403"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-42392",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-42392"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-42392",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-42392"
        },
        {
          "category": "external",
          "summary": "https://github.com/h2database/h2database/security/advisories/GHSA-h376-j262-vhq6",
          "url": "https://github.com/h2database/h2database/security/advisories/GHSA-h376-j262-vhq6"
        }
      ],
      "release_date": "2022-01-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "h2: Remote Code Execution in Console"
    },
    {
      "cve": "CVE-2021-44228",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2021-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2030932"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Apache Log4j logging library in versions from 2.0.0 and before 2.15.0. A remote attacker who can control log messages or log message parameters, can execute arbitrary code on the server via JNDI LDAP endpoint.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue only affects log4j versions between 2.0  and 2.14.1. In order to exploit this flaw you need:\n- A remotely accessible endpoint with any protocol (HTTP, TCP, etc) that allows an attacker to send arbitrary data,\n- A log statement in the endpoint that logs the attacker controlled data.\n\nIn Red Hat OpenShift Logging the vulnerable log4j library is shipped in the Elasticsearch components. Because Elasticsearch is not susceptible to remote code execution with this vulnerability due to use of the Java Security Manager and because access to these components is limited, the impact by this vulnerability is reduced to Moderate.\n\nAs per upstream applications using Log4j 1.x may be impacted by this flaw if their configuration uses JNDI. However, the risk is much lower. This flaw in Log4j 1.x is tracked via https://access.redhat.com/security/cve/CVE-2021-4104 and has been rated as having Moderate security impact.\n\nCodeReady Studio version 12.21.1 was released containing a fix for this vulnerability.\n\nThe following products are NOT affected by this flaw and have been explicitly listed here for the benefit of our customers.\n- Red Hat Enterprise Linux\n- Red Hat Advanced Cluster Management for Kubernetes \n- Red Hat Advanced Cluster Security for Kubernetes\n- Red Hat Ansible Automation Platform (Engine and Tower)\n- Red Hat Certificate System\n- Red Hat Directory Server\n- Red Hat Identity Management\n- Red Hat CloudForms \n- Red Hat Update Infrastructure\n- Red Hat Satellite\n- Red Hat Ceph Storage\n- Red Hat Gluster Storage\n- Red Hat OpenShift Data Foundation\n- Red Hat OpenStack Platform\n- Red Hat Virtualization\n- Red Hat Single Sign-On\n- Red Hat 3scale API Management",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44228"
        },
        {
          "category": "external",
          "summary": "RHBZ#2030932",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030932"
        },
        {
          "category": "external",
          "summary": "RHSB-2021-009",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44228",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44228"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44228",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44228"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-jfh8-c2jp-5v3q",
          "url": "https://github.com/advisories/GHSA-jfh8-c2jp-5v3q"
        },
        {
          "category": "external",
          "summary": "https://logging.apache.org/log4j/2.x/security.html",
          "url": "https://logging.apache.org/log4j/2.x/security.html"
        },
        {
          "category": "external",
          "summary": "https://www.lunasec.io/docs/blog/log4j-zero-day/",
          "url": "https://www.lunasec.io/docs/blog/log4j-zero-day/"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2021-12-10T02:01:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        },
        {
          "category": "workaround",
          "details": "For Log4j versions \u003e=2.10\nset the system property log4j2.formatMsgNoLookups or the environment variable LOG4J_FORMAT_MSG_NO_LOOKUPS to true\n\nFor Log4j versions \u003e=2.7 and \u003c=2.14.1\nall PatternLayout patterns can be modified to specify the message converter as %m{nolookups} instead of just %m\n\nFor Log4j versions \u003e=2.0-beta9 and \u003c=2.10.0\nremove the JndiLookup class from the classpath. For example: \n```\nzip -q -d log4j-core-*.jar org/apache/logging/log4j/core/lookup/JndiLookup.class\n```\n\nOn OpenShift 4 and in OpenShift Logging, the above mitigation can be applied by following the steps in this article: https://access.redhat.com/solutions/6578421\n\nOn OpenShift 3.11, mitigation to the affected Elasticsearch component can be applied by following the steps in this article: https://access.redhat.com/solutions/6578441",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2021-12-10T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value"
    },
    {
      "cve": "CVE-2021-44906",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "discovery_date": "2022-03-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2066009"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An Uncontrolled Resource Consumption flaw was found in minimist. The original fix for CVE-2020-7598 was incomplete as it was still possible to bypass in some cases. This flaw (CVE-2021-44906) allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using a constructor or __proto__ payload, resulting in prototype pollution and loss of confidentiality, availability, and integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "minimist: prototype pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "As minimist is an argument parsing module for nodejs, exploitation of this vulnerability requires an attacker to influence which arguments are passed to nodejs when running a script. Red Hat products and services are designed in such a way that gaining this ability is not trivial. Additionally, the impact is limited by only enabling the pollution of functions, and not all generic objects.\n\nWithin Red Hat Satellite 6 this flaw has been rated as having a security impact of Low. It is not currently planned to be addressed there, as the minimist library is only included in the -doc subpackage and is part of test fixtures that are not in the execution path used by the rabl gem.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "RHBZ#2066009",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44906",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-xvch-5gv4-984h",
          "url": "https://github.com/advisories/GHSA-xvch-5gv4-984h"
        }
      ],
      "release_date": "2022-03-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "minimist: prototype pollution"
    },
    {
      "cve": "CVE-2021-45046",
      "cwe": {
        "id": "CWE-917",
        "name": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)"
      },
      "discovery_date": "2021-12-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2032580"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Apache Log4j logging library in versions from 2.0.0 and before 2.16.0. A remote attacker with control over Thread Context Map (MDC) input data could craft malicious input using a JNDI Lookup pattern resulting in remote code execution (RCE) in a limited number of environments.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Although we have matched Apache\u0027s CVSS score, with the exception of the scope metric which will remain unaltered at \"unchanged\"; as we believe code execution would be at the permission levels of the running JVM and not exceeding that of the original CVE-2021-44228 flaw.\n \nWe have given this vulnerability an impact rating of Moderate, this is because of the unlikely nature of log4j lookup mapping values being derived from attacker controlled values. This is not the default configuration for end-applications using log4j 2.x and would require explicit action from a privileged user (a developer or administrator) to access the vulnerability. \nIn certain non-default configurations, it was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was insufficient.\n\nThis issue affects the log4j version between 2.0 and 2.15. Log4j 1.x is NOT impacted by this vulnerability. \n\nPrerequisites to exploit this flaw are :\n\n- A remotely accessible endpoint with any protocol (HTTP, TCP, etc) that allows an attacker to send arbitrary data,\n- A log statement in the endpoint that logs the attacker controlled data.\n- Log4j configuration file should be explicitly configured to use a non-default Pattern Layout with a Context Lookup eg. ($${ctx:loginId}) \n\nIn most cases, the mitigation suggested for CVE-2021-44228 (i.e. to set the system property `log4j2.noFormatMsgLookup` to `true) does NOT mitigate this specific vulnerability. \nLog4j 2.16.0 fixes this issue by removing support for message lookup patterns and disabling JNDI functionality by default.\n\nFor Elasticsearch, as shipped in OpenShift 3.11, the \"log4j2.formatMsgNoLookups=true\" system property mitigation is sufficient as there are no included non-standard configurations that allow for exploitation:\n\nhttps://github.com/openshift/openshift-ansible/blob/release-3.11/roles/openshift_logging_elasticsearch/templates/log4j2.properties.j2\n\nhttps://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476\n\nFor CodeReady Studio the fix for this flaw is available on CodeReady Studio 12.21.3 and above versions.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-45046"
        },
        {
          "category": "external",
          "summary": "RHBZ#2032580",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2032580"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-45046",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-45046"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-45046",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-45046"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/cve/CVE-2021-44228",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44228"
        },
        {
          "category": "external",
          "summary": "https://logging.apache.org/log4j/2.x/security.html",
          "url": "https://logging.apache.org/log4j/2.x/security.html"
        },
        {
          "category": "external",
          "summary": "https://www.openwall.com/lists/oss-security/2021/12/14/4",
          "url": "https://www.openwall.com/lists/oss-security/2021/12/14/4"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2021-12-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        },
        {
          "category": "workaround",
          "details": "For Log4j versions up to and including 2.15.0, this issue can be mitigated by removing the JndiLookup class from the classpath (example: zip -q -d log4j-core-*.jar org/apache/logging/log4j/core/lookup/JndiLookup.class).",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-05-01T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228)"
    },
    {
      "cve": "CVE-2022-1471",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "discovery_date": "2022-12-01T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2150009"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "SnakeYaml: Constructor Deserialization Remote Code Execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml\u0027s SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker\u0027s control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml\u0027s Constructor class nor pass untrusted data to this class. When this class is used, it\u2019s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-1471"
        },
        {
          "category": "external",
          "summary": "RHBZ#2150009",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2150009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-1471",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-1471"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1471",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1471"
        },
        {
          "category": "external",
          "summary": "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2"
        }
      ],
      "release_date": "2022-10-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "SnakeYaml: Constructor Deserialization Remote Code Execution"
    },
    {
      "cve": "CVE-2022-41881",
      "cwe": {
        "id": "CWE-674",
        "name": "Uncontrolled Recursion"
      },
      "discovery_date": "2022-12-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2153379"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in codec-haproxy from the Netty project. This flaw allows an attacker to build a malformed crafted message and cause infinite recursion, causing stack exhaustion and leading to a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-41881"
        },
        {
          "category": "external",
          "summary": "RHBZ#2153379",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153379"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-41881",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-41881"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41881",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41881"
        }
      ],
      "release_date": "2022-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS"
    },
    {
      "cve": "CVE-2022-42003",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "discovery_date": "2022-10-17T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2135244"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-42003"
        },
        {
          "category": "external",
          "summary": "RHBZ#2135244",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135244"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-42003",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-42003"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42003",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42003"
        }
      ],
      "release_date": "2022-10-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS"
    },
    {
      "cve": "CVE-2022-42004",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "discovery_date": "2022-10-17T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2135247"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer._deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices for deserialization.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jackson-databind: use of deeply nested arrays",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-42004"
        },
        {
          "category": "external",
          "summary": "RHBZ#2135247",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135247"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-42004",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42004",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42004"
        }
      ],
      "release_date": "2022-10-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jackson-databind: use of deeply nested arrays"
    },
    {
      "cve": "CVE-2022-42889",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2022-10-15T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2135435"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Commons Text packages 1.5 through 1.9.  The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "apache-commons-text: variable interpolation RCE",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n  - Usage of specific methods that interpolate the variables as described in the flaw\n  - Usage of external input for those methods\n  - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-42889"
        },
        {
          "category": "external",
          "summary": "RHBZ#2135435",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2135435"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-42889",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-42889"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-42889",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42889"
        },
        {
          "category": "external",
          "summary": "https://blogs.apache.org/security/entry/cve-2022-42889",
          "url": "https://blogs.apache.org/security/entry/cve-2022-42889"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om",
          "url": "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om"
        },
        {
          "category": "external",
          "summary": "https://seclists.org/oss-sec/2022/q4/22",
          "url": "https://seclists.org/oss-sec/2022/q4/22"
        }
      ],
      "release_date": "2022-10-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        },
        {
          "category": "workaround",
          "details": "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "apache-commons-text: variable interpolation RCE"
    },
    {
      "cve": "CVE-2022-45047",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "discovery_date": "2022-11-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2145194"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "mina-sshd: Java unsafe deserialization vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Impact as High as there\u0027s a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it\u0027s very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-45047"
        },
        {
          "category": "external",
          "summary": "RHBZ#2145194",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2145194"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-45047",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-45047"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-45047",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45047"
        },
        {
          "category": "external",
          "summary": "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html",
          "url": "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html"
        }
      ],
      "release_date": "2022-11-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        },
        {
          "category": "workaround",
          "details": "From the maintainer:\n\nFor Apache MINA SSHD \u003c= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server\u0027s host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "mina-sshd: Java unsafe deserialization vulnerability"
    },
    {
      "cve": "CVE-2022-45693",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2022-12-23T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2155970"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Jettison, where it is vulnerable to a denial of service caused by a stack-based buffer overflow. By sending a specially-crafted request using the map parameter, a remote attacker can cause a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jettison: If the value in map is the map\u0027s self, the new new JSONObject(map) cause StackOverflowError which may lead to dos",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat has determined the impact of this flaw to be Moderate; a successful attack using this flaw would require the processing of untrusted, unsanitized, or unrestricted user inputs, which runs counter to established Red Hat security practices.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-45693"
        },
        {
          "category": "external",
          "summary": "RHBZ#2155970",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2155970"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-45693",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-45693"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-45693",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45693"
        }
      ],
      "release_date": "2022-12-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jettison: If the value in map is the map\u0027s self, the new new JSONObject(map) cause StackOverflowError which may lead to dos"
    },
    {
      "cve": "CVE-2022-46363",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2022-12-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2155681"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in Apache CXF that could allow an attacker to perform a remote directory listing or code exfiltration. This issue only applies when the CXFServlet is configured with both the static-resources-list and redirect-query-check attributes. These attributes are not supposed to be used together, so the issue can only occur if the CXF service is misconfigured.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "CXF: directory listing / code exfiltration",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-46363"
        },
        {
          "category": "external",
          "summary": "RHBZ#2155681",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2155681"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-46363",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-46363"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-46363",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-46363"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/pdzo1qgyplf4y523tnnzrcm7hoco3l8c",
          "url": "https://lists.apache.org/thread/pdzo1qgyplf4y523tnnzrcm7hoco3l8c"
        }
      ],
      "release_date": "2022-12-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-02-24T00:08:38+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:1747"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-hal-console-0:3.2.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-4.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-2.redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jettison-0:1.5.2-2.redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-4.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-4.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-0:3.11.6-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-atom-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-cdi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-client-microprofile-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-crypto-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jackson2-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxb-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jaxrs-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jettison-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jose-jwt-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-jsapi-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-binding-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-json-p-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-multipart-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-rxjava2-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-spring-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-validator-provider-11-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-resteasy-yaml-provider-0:3.11.6-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-snakeyaml-0:1.33.0-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.12-3.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.12-3.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "CXF: directory listing / code exfiltration"
    }
  ]
}

SUSE-SU-2022:1459-1

Vulnerability from csaf_suse - Published: 2022-04-28 12:38 - Updated: 2022-04-28 12:38

Summary

Security update for nodejs14

Severity

Important

Notes

Title of the patch: Security update for nodejs14

Description of the patch: This update for nodejs14 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).

Patchnames: SUSE-2022-1459,SUSE-SLE-Module-Web-Scripting-12-2022-1459

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0778

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64	—	Vendor Fix

Threats

Impact important

References

28 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1196877	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2022-0778/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external
https://www.suse.com/security/cve/CVE-2022-0778	external
https://bugzilla.suse.com/1196877	external
https://bugzilla.suse.com/1197328	external
https://bugzilla.suse.com/1197340	external
https://bugzilla.suse.com/1199100	external
https://bugzilla.suse.com/1199254	external
https://bugzilla.suse.com/1199303	external
https://bugzilla.suse.com/1199339	external
https://bugzilla.suse.com/1200090	external
https://bugzilla.suse.com/1225670	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs14",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs14 fixes the following issues:\n\n- CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877).\n- CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247).\n- CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283).\n- CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1459,SUSE-SLE-Module-Web-Scripting-12-2022-1459",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1459-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1459-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221459-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1459-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010863.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196877",
        "url": "https://bugzilla.suse.com/1196877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0778 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0778/"
      }
    ],
    "title": "Security update for nodejs14",
    "tracking": {
      "current_release_date": "2022-04-28T12:38:04Z",
      "generator": {
        "date": "2022-04-28T12:38:04Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1459-1",
      "initial_release_date": "2022-04-28T12:38:04Z",
      "revision_history": [
        {
          "date": "2022-04-28T12:38:04Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-6.28.1.aarch64",
                "product": {
                  "name": "corepack14-14.19.1-6.28.1.aarch64",
                  "product_id": "corepack14-14.19.1-6.28.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-6.28.1.aarch64",
                "product": {
                  "name": "nodejs14-14.19.1-6.28.1.aarch64",
                  "product_id": "nodejs14-14.19.1-6.28.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-6.28.1.aarch64",
                "product": {
                  "name": "nodejs14-devel-14.19.1-6.28.1.aarch64",
                  "product_id": "nodejs14-devel-14.19.1-6.28.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-6.28.1.aarch64",
                "product": {
                  "name": "npm14-14.19.1-6.28.1.aarch64",
                  "product_id": "npm14-14.19.1-6.28.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-6.28.1.i586",
                "product": {
                  "name": "corepack14-14.19.1-6.28.1.i586",
                  "product_id": "corepack14-14.19.1-6.28.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-6.28.1.i586",
                "product": {
                  "name": "nodejs14-14.19.1-6.28.1.i586",
                  "product_id": "nodejs14-14.19.1-6.28.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-6.28.1.i586",
                "product": {
                  "name": "nodejs14-devel-14.19.1-6.28.1.i586",
                  "product_id": "nodejs14-devel-14.19.1-6.28.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-6.28.1.i586",
                "product": {
                  "name": "npm14-14.19.1-6.28.1.i586",
                  "product_id": "npm14-14.19.1-6.28.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs14-docs-14.19.1-6.28.1.noarch",
                "product": {
                  "name": "nodejs14-docs-14.19.1-6.28.1.noarch",
                  "product_id": "nodejs14-docs-14.19.1-6.28.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-6.28.1.ppc64le",
                "product": {
                  "name": "corepack14-14.19.1-6.28.1.ppc64le",
                  "product_id": "corepack14-14.19.1-6.28.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-6.28.1.ppc64le",
                "product": {
                  "name": "nodejs14-14.19.1-6.28.1.ppc64le",
                  "product_id": "nodejs14-14.19.1-6.28.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-6.28.1.ppc64le",
                "product": {
                  "name": "nodejs14-devel-14.19.1-6.28.1.ppc64le",
                  "product_id": "nodejs14-devel-14.19.1-6.28.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-6.28.1.ppc64le",
                "product": {
                  "name": "npm14-14.19.1-6.28.1.ppc64le",
                  "product_id": "npm14-14.19.1-6.28.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-6.28.1.s390x",
                "product": {
                  "name": "corepack14-14.19.1-6.28.1.s390x",
                  "product_id": "corepack14-14.19.1-6.28.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-6.28.1.s390x",
                "product": {
                  "name": "nodejs14-14.19.1-6.28.1.s390x",
                  "product_id": "nodejs14-14.19.1-6.28.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-6.28.1.s390x",
                "product": {
                  "name": "nodejs14-devel-14.19.1-6.28.1.s390x",
                  "product_id": "nodejs14-devel-14.19.1-6.28.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-6.28.1.s390x",
                "product": {
                  "name": "npm14-14.19.1-6.28.1.s390x",
                  "product_id": "npm14-14.19.1-6.28.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-6.28.1.x86_64",
                "product": {
                  "name": "corepack14-14.19.1-6.28.1.x86_64",
                  "product_id": "corepack14-14.19.1-6.28.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-6.28.1.x86_64",
                "product": {
                  "name": "nodejs14-14.19.1-6.28.1.x86_64",
                  "product_id": "nodejs14-14.19.1-6.28.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-6.28.1.x86_64",
                "product": {
                  "name": "nodejs14-devel-14.19.1-6.28.1.x86_64",
                  "product_id": "nodejs14-devel-14.19.1-6.28.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-6.28.1.x86_64",
                "product": {
                  "name": "npm14-14.19.1-6.28.1.x86_64",
                  "product_id": "npm14-14.19.1-6.28.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Web and Scripting 12",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Web and Scripting 12",
                  "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-web-scripting:12"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-6.28.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-6.28.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-6.28.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-6.28.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-6.28.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-6.28.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-6.28.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-6.28.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-6.28.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-6.28.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-6.28.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-6.28.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-6.28.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-6.28.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-6.28.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-6.28.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-6.28.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x"
        },
        "product_reference": "npm14-14.19.1-6.28.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-6.28.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-6.28.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T12:38:04Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T12:38:04Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T12:38:04Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    },
    {
      "cve": "CVE-2022-0778",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0778"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0778",
          "url": "https://www.suse.com/security/cve/CVE-2022-0778"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196877 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1196877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197328 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197328"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197340 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199100 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199100"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199254 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199254"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199303 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199303"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199339 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200090 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1200090"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225670 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1225670"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.19.1-6.28.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.19.1-6.28.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.19.1-6.28.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T12:38:04Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0778"
    }
  ]
}

SUSE-SU-2022:1461-1

Vulnerability from csaf_suse - Published: 2022-04-28 14:25 - Updated: 2022-04-28 14:25

Summary

Security update for nodejs12

Severity

Important

Notes

Title of the patch: Security update for nodejs12

Description of the patch: This update for nodejs12 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).

Patchnames: SUSE-2022-1461,SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1461,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1461,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1461,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1461,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1461,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1461,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1461,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1461,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1461,SUSE-Storage-7-2022-1461,openSUSE-SLE-15.3-2022-1461,openSUSE-SLE-15.4-2022-1461

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 102 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 102 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 102 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0778

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 102 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64	—	Vendor Fix

Threats

Impact important

References

28 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1196877	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2022-0778/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external
https://www.suse.com/security/cve/CVE-2022-0778	external
https://bugzilla.suse.com/1196877	external
https://bugzilla.suse.com/1197328	external
https://bugzilla.suse.com/1197340	external
https://bugzilla.suse.com/1199100	external
https://bugzilla.suse.com/1199254	external
https://bugzilla.suse.com/1199303	external
https://bugzilla.suse.com/1199339	external
https://bugzilla.suse.com/1200090	external
https://bugzilla.suse.com/1225670	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs12",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs12 fixes the following issues:\n\t\n- CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877).\n- CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247).\n- CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283).\n- CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1461,SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1461,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1461,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1461,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1461,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1461,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1461,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1461,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1461,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1461,SUSE-Storage-7-2022-1461,openSUSE-SLE-15.3-2022-1461,openSUSE-SLE-15.4-2022-1461",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1461-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1461-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221461-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1461-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010865.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196877",
        "url": "https://bugzilla.suse.com/1196877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0778 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0778/"
      }
    ],
    "title": "Security update for nodejs12",
    "tracking": {
      "current_release_date": "2022-04-28T14:25:18Z",
      "generator": {
        "date": "2022-04-28T14:25:18Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1461-1",
      "initial_release_date": "2022-04-28T14:25:18Z",
      "revision_history": [
        {
          "date": "2022-04-28T14:25:18Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-150200.4.32.1.aarch64",
                "product": {
                  "name": "nodejs12-12.22.12-150200.4.32.1.aarch64",
                  "product_id": "nodejs12-12.22.12-150200.4.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
                "product": {
                  "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
                  "product_id": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-150200.4.32.1.aarch64",
                "product": {
                  "name": "npm12-12.22.12-150200.4.32.1.aarch64",
                  "product_id": "npm12-12.22.12-150200.4.32.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-150200.4.32.1.i586",
                "product": {
                  "name": "nodejs12-12.22.12-150200.4.32.1.i586",
                  "product_id": "nodejs12-12.22.12-150200.4.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-150200.4.32.1.i586",
                "product": {
                  "name": "nodejs12-devel-12.22.12-150200.4.32.1.i586",
                  "product_id": "nodejs12-devel-12.22.12-150200.4.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-150200.4.32.1.i586",
                "product": {
                  "name": "npm12-12.22.12-150200.4.32.1.i586",
                  "product_id": "npm12-12.22.12-150200.4.32.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
                "product": {
                  "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
                  "product_id": "nodejs12-docs-12.22.12-150200.4.32.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
                "product": {
                  "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
                  "product_id": "nodejs12-12.22.12-150200.4.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
                "product": {
                  "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
                  "product_id": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-150200.4.32.1.ppc64le",
                "product": {
                  "name": "npm12-12.22.12-150200.4.32.1.ppc64le",
                  "product_id": "npm12-12.22.12-150200.4.32.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-150200.4.32.1.s390x",
                "product": {
                  "name": "nodejs12-12.22.12-150200.4.32.1.s390x",
                  "product_id": "nodejs12-12.22.12-150200.4.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
                "product": {
                  "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
                  "product_id": "nodejs12-devel-12.22.12-150200.4.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-150200.4.32.1.s390x",
                "product": {
                  "name": "npm12-12.22.12-150200.4.32.1.s390x",
                  "product_id": "npm12-12.22.12-150200.4.32.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-150200.4.32.1.x86_64",
                "product": {
                  "name": "nodejs12-12.22.12-150200.4.32.1.x86_64",
                  "product_id": "nodejs12-12.22.12-150200.4.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
                "product": {
                  "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
                  "product_id": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-150200.4.32.1.x86_64",
                "product": {
                  "name": "npm12-12.22.12-150200.4.32.1.x86_64",
                  "product_id": "npm12-12.22.12-150200.4.32.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy 4.1",
                "product": {
                  "name": "SUSE Manager Proxy 4.1",
                  "product_id": "SUSE Manager Proxy 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Retail Branch Server 4.1",
                "product": {
                  "name": "SUSE Manager Retail Branch Server 4.1",
                  "product_id": "SUSE Manager Retail Branch Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server 4.1",
                "product": {
                  "name": "SUSE Manager Server 4.1",
                  "product_id": "SUSE Manager Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7",
                "product": {
                  "name": "SUSE Enterprise Storage 7",
                  "product_id": "SUSE Enterprise Storage 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-150200.4.32.1.noarch as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-150200.4.32.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-150200.4.32.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-150200.4.32.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:25:18Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:25:18Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:25:18Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    },
    {
      "cve": "CVE-2022-0778",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0778"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
          "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
          "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
          "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0778",
          "url": "https://www.suse.com/security/cve/CVE-2022-0778"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196877 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1196877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197328 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197328"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197340 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199100 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199100"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199254 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199254"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199303 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199303"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199339 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200090 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1200090"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225670 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1225670"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Enterprise Storage 7:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Proxy 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "SUSE Manager Server 4.1:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.ppc64le",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.s390x",
            "SUSE Manager Server 4.1:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.3:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.3:npm12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:nodejs12-devel-12.22.12-150200.4.32.1.x86_64",
            "openSUSE Leap 15.4:nodejs12-docs-12.22.12-150200.4.32.1.noarch",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.aarch64",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.ppc64le",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.s390x",
            "openSUSE Leap 15.4:npm12-12.22.12-150200.4.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:25:18Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0778"
    }
  ]
}

SUSE-SU-2022:1462-1

Vulnerability from csaf_suse - Published: 2022-04-28 14:46 - Updated: 2022-04-28 14:46

Summary

Security update for nodejs14

Severity

Important

Notes

Title of the patch: Security update for nodejs14

Patchnames: SUSE-2022-1462,SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1462,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1462,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1462,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1462,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1462,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1462,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1462,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1462,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1462,SUSE-Storage-7-2022-1462,openSUSE-SLE-15.3-2022-1462,openSUSE-SLE-15.4-2022-1462

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 106 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 106 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 106 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0778

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 106 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64	—	Vendor Fix

Threats

Impact important

References

28 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1196877	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2022-0778/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external
https://www.suse.com/security/cve/CVE-2022-0778	external
https://bugzilla.suse.com/1196877	external
https://bugzilla.suse.com/1197328	external
https://bugzilla.suse.com/1197340	external
https://bugzilla.suse.com/1199100	external
https://bugzilla.suse.com/1199254	external
https://bugzilla.suse.com/1199303	external
https://bugzilla.suse.com/1199339	external
https://bugzilla.suse.com/1200090	external
https://bugzilla.suse.com/1225670	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs14",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs14 fixes the following issues:\n\n- CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877).\n- CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247).\n- CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283).\n- CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1462,SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1462,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1462,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1462,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1462,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1462,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1462,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1462,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1462,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1462,SUSE-Storage-7-2022-1462,openSUSE-SLE-15.3-2022-1462,openSUSE-SLE-15.4-2022-1462",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1462-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1462-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221462-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1462-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010864.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196877",
        "url": "https://bugzilla.suse.com/1196877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0778 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0778/"
      }
    ],
    "title": "Security update for nodejs14",
    "tracking": {
      "current_release_date": "2022-04-28T14:46:29Z",
      "generator": {
        "date": "2022-04-28T14:46:29Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1462-1",
      "initial_release_date": "2022-04-28T14:46:29Z",
      "revision_history": [
        {
          "date": "2022-04-28T14:46:29Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-150200.15.31.1.aarch64",
                "product": {
                  "name": "corepack14-14.19.1-150200.15.31.1.aarch64",
                  "product_id": "corepack14-14.19.1-150200.15.31.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-150200.15.31.1.aarch64",
                "product": {
                  "name": "nodejs14-14.19.1-150200.15.31.1.aarch64",
                  "product_id": "nodejs14-14.19.1-150200.15.31.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
                "product": {
                  "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
                  "product_id": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-150200.15.31.1.aarch64",
                "product": {
                  "name": "npm14-14.19.1-150200.15.31.1.aarch64",
                  "product_id": "npm14-14.19.1-150200.15.31.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-150200.15.31.1.i586",
                "product": {
                  "name": "corepack14-14.19.1-150200.15.31.1.i586",
                  "product_id": "corepack14-14.19.1-150200.15.31.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-150200.15.31.1.i586",
                "product": {
                  "name": "nodejs14-14.19.1-150200.15.31.1.i586",
                  "product_id": "nodejs14-14.19.1-150200.15.31.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-150200.15.31.1.i586",
                "product": {
                  "name": "nodejs14-devel-14.19.1-150200.15.31.1.i586",
                  "product_id": "nodejs14-devel-14.19.1-150200.15.31.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-150200.15.31.1.i586",
                "product": {
                  "name": "npm14-14.19.1-150200.15.31.1.i586",
                  "product_id": "npm14-14.19.1-150200.15.31.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
                "product": {
                  "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
                  "product_id": "nodejs14-docs-14.19.1-150200.15.31.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-150200.15.31.1.ppc64le",
                "product": {
                  "name": "corepack14-14.19.1-150200.15.31.1.ppc64le",
                  "product_id": "corepack14-14.19.1-150200.15.31.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
                "product": {
                  "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
                  "product_id": "nodejs14-14.19.1-150200.15.31.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
                "product": {
                  "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
                  "product_id": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-150200.15.31.1.ppc64le",
                "product": {
                  "name": "npm14-14.19.1-150200.15.31.1.ppc64le",
                  "product_id": "npm14-14.19.1-150200.15.31.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-150200.15.31.1.s390x",
                "product": {
                  "name": "corepack14-14.19.1-150200.15.31.1.s390x",
                  "product_id": "corepack14-14.19.1-150200.15.31.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-150200.15.31.1.s390x",
                "product": {
                  "name": "nodejs14-14.19.1-150200.15.31.1.s390x",
                  "product_id": "nodejs14-14.19.1-150200.15.31.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
                "product": {
                  "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
                  "product_id": "nodejs14-devel-14.19.1-150200.15.31.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-150200.15.31.1.s390x",
                "product": {
                  "name": "npm14-14.19.1-150200.15.31.1.s390x",
                  "product_id": "npm14-14.19.1-150200.15.31.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "corepack14-14.19.1-150200.15.31.1.x86_64",
                "product": {
                  "name": "corepack14-14.19.1-150200.15.31.1.x86_64",
                  "product_id": "corepack14-14.19.1-150200.15.31.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-14.19.1-150200.15.31.1.x86_64",
                "product": {
                  "name": "nodejs14-14.19.1-150200.15.31.1.x86_64",
                  "product_id": "nodejs14-14.19.1-150200.15.31.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
                "product": {
                  "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
                  "product_id": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm14-14.19.1-150200.15.31.1.x86_64",
                "product": {
                  "name": "npm14-14.19.1-150200.15.31.1.x86_64",
                  "product_id": "npm14-14.19.1-150200.15.31.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy 4.1",
                "product": {
                  "name": "SUSE Manager Proxy 4.1",
                  "product_id": "SUSE Manager Proxy 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Retail Branch Server 4.1",
                "product": {
                  "name": "SUSE Manager Retail Branch Server 4.1",
                  "product_id": "SUSE Manager Retail Branch Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server 4.1",
                "product": {
                  "name": "SUSE Manager Server 4.1",
                  "product_id": "SUSE Manager Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7",
                "product": {
                  "name": "SUSE Enterprise Storage 7",
                  "product_id": "SUSE Enterprise Storage 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "corepack14-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "corepack14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "corepack14-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "corepack14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "corepack14-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "corepack14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "corepack14-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "corepack14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs14-docs-14.19.1-150200.15.31.1.noarch as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch"
        },
        "product_reference": "nodejs14-docs-14.19.1-150200.15.31.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm14-14.19.1-150200.15.31.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
        },
        "product_reference": "npm14-14.19.1-150200.15.31.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:46:29Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:46:29Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:46:29Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    },
    {
      "cve": "CVE-2022-0778",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0778"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
          "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
          "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
          "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0778",
          "url": "https://www.suse.com/security/cve/CVE-2022-0778"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196877 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1196877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197328 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197328"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197340 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1197340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199100 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199100"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199254 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199254"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199303 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199303"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199339 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1199339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200090 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1200090"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225670 for CVE-2022-0778",
          "url": "https://bugzilla.suse.com/1225670"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Enterprise Storage 7:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Proxy 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "SUSE Manager Server 4.1:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.ppc64le",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.s390x",
            "SUSE Manager Server 4.1:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.3:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.3:npm14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:corepack14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:nodejs14-devel-14.19.1-150200.15.31.1.x86_64",
            "openSUSE Leap 15.4:nodejs14-docs-14.19.1-150200.15.31.1.noarch",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.aarch64",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.ppc64le",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.s390x",
            "openSUSE Leap 15.4:npm14-14.19.1-150200.15.31.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-28T14:46:29Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0778"
    }
  ]
}

SUSE-SU-2022:1466-1

Vulnerability from csaf_suse - Published: 2022-04-29 09:42 - Updated: 2022-04-29 09:42

Summary

Security update for nodejs12

Severity

Important

Notes

Title of the patch: Security update for nodejs12

Description of the patch: This update for nodejs12 fixes the following issues: - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).

Patchnames: SUSE-2022-1466,SUSE-SLE-Module-Web-Scripting-12-2022-1466

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

16 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs12",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs12 fixes the following issues:\n\n- CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247).\n- CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283).\n- CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1466,SUSE-SLE-Module-Web-Scripting-12-2022-1466",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1466-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1466-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221466-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1466-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010896.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      }
    ],
    "title": "Security update for nodejs12",
    "tracking": {
      "current_release_date": "2022-04-29T09:42:23Z",
      "generator": {
        "date": "2022-04-29T09:42:23Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1466-1",
      "initial_release_date": "2022-04-29T09:42:23Z",
      "revision_history": [
        {
          "date": "2022-04-29T09:42:23Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-1.48.1.aarch64",
                "product": {
                  "name": "nodejs12-12.22.12-1.48.1.aarch64",
                  "product_id": "nodejs12-12.22.12-1.48.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-1.48.1.aarch64",
                "product": {
                  "name": "nodejs12-devel-12.22.12-1.48.1.aarch64",
                  "product_id": "nodejs12-devel-12.22.12-1.48.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-1.48.1.aarch64",
                "product": {
                  "name": "npm12-12.22.12-1.48.1.aarch64",
                  "product_id": "npm12-12.22.12-1.48.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-1.48.1.i586",
                "product": {
                  "name": "nodejs12-12.22.12-1.48.1.i586",
                  "product_id": "nodejs12-12.22.12-1.48.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-1.48.1.i586",
                "product": {
                  "name": "nodejs12-devel-12.22.12-1.48.1.i586",
                  "product_id": "nodejs12-devel-12.22.12-1.48.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-1.48.1.i586",
                "product": {
                  "name": "npm12-12.22.12-1.48.1.i586",
                  "product_id": "npm12-12.22.12-1.48.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-docs-12.22.12-1.48.1.noarch",
                "product": {
                  "name": "nodejs12-docs-12.22.12-1.48.1.noarch",
                  "product_id": "nodejs12-docs-12.22.12-1.48.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-1.48.1.ppc64le",
                "product": {
                  "name": "nodejs12-12.22.12-1.48.1.ppc64le",
                  "product_id": "nodejs12-12.22.12-1.48.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-1.48.1.ppc64le",
                "product": {
                  "name": "nodejs12-devel-12.22.12-1.48.1.ppc64le",
                  "product_id": "nodejs12-devel-12.22.12-1.48.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-1.48.1.ppc64le",
                "product": {
                  "name": "npm12-12.22.12-1.48.1.ppc64le",
                  "product_id": "npm12-12.22.12-1.48.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-1.48.1.s390x",
                "product": {
                  "name": "nodejs12-12.22.12-1.48.1.s390x",
                  "product_id": "nodejs12-12.22.12-1.48.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-1.48.1.s390x",
                "product": {
                  "name": "nodejs12-devel-12.22.12-1.48.1.s390x",
                  "product_id": "nodejs12-devel-12.22.12-1.48.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-1.48.1.s390x",
                "product": {
                  "name": "npm12-12.22.12-1.48.1.s390x",
                  "product_id": "npm12-12.22.12-1.48.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs12-12.22.12-1.48.1.x86_64",
                "product": {
                  "name": "nodejs12-12.22.12-1.48.1.x86_64",
                  "product_id": "nodejs12-12.22.12-1.48.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs12-devel-12.22.12-1.48.1.x86_64",
                "product": {
                  "name": "nodejs12-devel-12.22.12-1.48.1.x86_64",
                  "product_id": "nodejs12-devel-12.22.12-1.48.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm12-12.22.12-1.48.1.x86_64",
                "product": {
                  "name": "npm12-12.22.12-1.48.1.x86_64",
                  "product_id": "npm12-12.22.12-1.48.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Web and Scripting 12",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Web and Scripting 12",
                  "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-web-scripting:12"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-1.48.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64"
        },
        "product_reference": "nodejs12-12.22.12-1.48.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-1.48.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le"
        },
        "product_reference": "nodejs12-12.22.12-1.48.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-1.48.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x"
        },
        "product_reference": "nodejs12-12.22.12-1.48.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-12.22.12-1.48.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64"
        },
        "product_reference": "nodejs12-12.22.12-1.48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-1.48.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64"
        },
        "product_reference": "nodejs12-devel-12.22.12-1.48.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-1.48.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le"
        },
        "product_reference": "nodejs12-devel-12.22.12-1.48.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-1.48.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x"
        },
        "product_reference": "nodejs12-devel-12.22.12-1.48.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-devel-12.22.12-1.48.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64"
        },
        "product_reference": "nodejs12-devel-12.22.12-1.48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs12-docs-12.22.12-1.48.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch"
        },
        "product_reference": "nodejs12-docs-12.22.12-1.48.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-1.48.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64"
        },
        "product_reference": "npm12-12.22.12-1.48.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-1.48.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le"
        },
        "product_reference": "npm12-12.22.12-1.48.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-1.48.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x"
        },
        "product_reference": "npm12-12.22.12-1.48.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm12-12.22.12-1.48.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
          "product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
        },
        "product_reference": "npm12-12.22.12-1.48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-29T09:42:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-29T09:42:23Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
          "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.12-1.48.1.x86_64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.12-1.48.1.noarch",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.aarch64",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.ppc64le",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.s390x",
            "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.12-1.48.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-04-29T09:42:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    }
  ]
}

SUSE-SU-2022:1694-1

Vulnerability from csaf_suse - Published: 2022-05-17 07:13 - Updated: 2022-05-17 07:13

Summary

Security update for nodejs8

Severity

Moderate

Notes

Title of the patch: Security update for nodejs8

Description of the patch: This update for nodejs8 fixes the following issues: - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).

Patchnames: SUSE-2022-1694,openSUSE-SLE-15.3-2022-1694,openSUSE-SLE-15.4-2022-1694

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 26 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 26 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 26 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

16 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs8",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs8 fixes the following issues:\n\n- CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247).\n- CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283).\n- CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1694,openSUSE-SLE-15.3-2022-1694,openSUSE-SLE-15.4-2022-1694",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1694-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1694-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221694-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1694-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-May/011051.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      }
    ],
    "title": "Security update for nodejs8",
    "tracking": {
      "current_release_date": "2022-05-17T07:13:45Z",
      "generator": {
        "date": "2022-05-17T07:13:45Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1694-1",
      "initial_release_date": "2022-05-17T07:13:45Z",
      "revision_history": [
        {
          "date": "2022-05-17T07:13:45Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-8.17.0-150200.10.22.1.aarch64",
                "product": {
                  "name": "nodejs8-8.17.0-150200.10.22.1.aarch64",
                  "product_id": "nodejs8-8.17.0-150200.10.22.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
                "product": {
                  "name": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
                  "product_id": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm8-8.17.0-150200.10.22.1.aarch64",
                "product": {
                  "name": "npm8-8.17.0-150200.10.22.1.aarch64",
                  "product_id": "npm8-8.17.0-150200.10.22.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-8.17.0-150200.10.22.1.i586",
                "product": {
                  "name": "nodejs8-8.17.0-150200.10.22.1.i586",
                  "product_id": "nodejs8-8.17.0-150200.10.22.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs8-devel-8.17.0-150200.10.22.1.i586",
                "product": {
                  "name": "nodejs8-devel-8.17.0-150200.10.22.1.i586",
                  "product_id": "nodejs8-devel-8.17.0-150200.10.22.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm8-8.17.0-150200.10.22.1.i586",
                "product": {
                  "name": "npm8-8.17.0-150200.10.22.1.i586",
                  "product_id": "npm8-8.17.0-150200.10.22.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-docs-8.17.0-150200.10.22.1.noarch",
                "product": {
                  "name": "nodejs8-docs-8.17.0-150200.10.22.1.noarch",
                  "product_id": "nodejs8-docs-8.17.0-150200.10.22.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-8.17.0-150200.10.22.1.ppc64le",
                "product": {
                  "name": "nodejs8-8.17.0-150200.10.22.1.ppc64le",
                  "product_id": "nodejs8-8.17.0-150200.10.22.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
                "product": {
                  "name": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
                  "product_id": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm8-8.17.0-150200.10.22.1.ppc64le",
                "product": {
                  "name": "npm8-8.17.0-150200.10.22.1.ppc64le",
                  "product_id": "npm8-8.17.0-150200.10.22.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-8.17.0-150200.10.22.1.s390x",
                "product": {
                  "name": "nodejs8-8.17.0-150200.10.22.1.s390x",
                  "product_id": "nodejs8-8.17.0-150200.10.22.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs8-devel-8.17.0-150200.10.22.1.s390x",
                "product": {
                  "name": "nodejs8-devel-8.17.0-150200.10.22.1.s390x",
                  "product_id": "nodejs8-devel-8.17.0-150200.10.22.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm8-8.17.0-150200.10.22.1.s390x",
                "product": {
                  "name": "npm8-8.17.0-150200.10.22.1.s390x",
                  "product_id": "npm8-8.17.0-150200.10.22.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs8-8.17.0-150200.10.22.1.x86_64",
                "product": {
                  "name": "nodejs8-8.17.0-150200.10.22.1.x86_64",
                  "product_id": "nodejs8-8.17.0-150200.10.22.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
                "product": {
                  "name": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
                  "product_id": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm8-8.17.0-150200.10.22.1.x86_64",
                "product": {
                  "name": "npm8-8.17.0-150200.10.22.1.x86_64",
                  "product_id": "npm8-8.17.0-150200.10.22.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-docs-8.17.0-150200.10.22.1.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch"
        },
        "product_reference": "nodejs8-docs-8.17.0-150200.10.22.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "nodejs8-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs8-docs-8.17.0-150200.10.22.1.noarch as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch"
        },
        "product_reference": "nodejs8-docs-8.17.0-150200.10.22.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm8-8.17.0-150200.10.22.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
        },
        "product_reference": "npm8-8.17.0-150200.10.22.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T07:13:45Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T07:13:45Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
          "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
          "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.3:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.3:npm8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:nodejs8-devel-8.17.0-150200.10.22.1.x86_64",
            "openSUSE Leap 15.4:nodejs8-docs-8.17.0-150200.10.22.1.noarch",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.aarch64",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.ppc64le",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.s390x",
            "openSUSE Leap 15.4:npm8-8.17.0-150200.10.22.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T07:13:45Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    }
  ]
}

SUSE-SU-2022:1717-1

Vulnerability from csaf_suse - Published: 2022-05-17 15:43 - Updated: 2022-05-17 15:43

Summary

Security update for nodejs10

Severity

Important

Notes

Title of the patch: Security update for nodejs10

Description of the patch: This update for nodejs10 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). - CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514). - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).

Patchnames: SUSE-2022-1717,SUSE-SLE-Product-HPC-15-2022-1717,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-1717,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-1717,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1717,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1717,SUSE-SLE-Product-SLES-15-2022-1717,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-1717,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-1717,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1717,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1717,SUSE-SLE-Product-SLES_SAP-15-2022-1717,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-1717,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1717,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1717,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1717,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1717,SUSE-Storage-6-2022-1717,SUSE-Storage-7-2022-1717,openSUSE-SLE-15.3-2022-1717,openSUSE-SLE-15.4-2022-1717

CVE-2021-23343

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-32803

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-32804

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3807

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3918

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-44907

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-0235

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21824

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 168 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

42 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1191962	self
https://bugzilla.suse.com/1191963	self
https://bugzilla.suse.com/1192153	self
https://bugzilla.suse.com/1192154	self
https://bugzilla.suse.com/1192696	self
https://bugzilla.suse.com/1194514	self
https://bugzilla.suse.com/1194819	self
https://bugzilla.suse.com/1197283	self
https://bugzilla.suse.com/1198247	self
https://www.suse.com/security/cve/CVE-2021-23343/	self
https://www.suse.com/security/cve/CVE-2021-32803/	self
https://www.suse.com/security/cve/CVE-2021-32804/	self
https://www.suse.com/security/cve/CVE-2021-3807/	self
https://www.suse.com/security/cve/CVE-2021-3918/	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2021-44907/	self
https://www.suse.com/security/cve/CVE-2022-0235/	self
https://www.suse.com/security/cve/CVE-2022-21824/	self
https://www.suse.com/security/cve/CVE-2021-23343	external
https://bugzilla.suse.com/1192153	external
https://www.suse.com/security/cve/CVE-2021-32803	external
https://bugzilla.suse.com/1191962	external
https://bugzilla.suse.com/1191963	external
https://www.suse.com/security/cve/CVE-2021-32804	external
https://bugzilla.suse.com/1191962	external
https://www.suse.com/security/cve/CVE-2021-3807	external
https://bugzilla.suse.com/1192154	external
https://www.suse.com/security/cve/CVE-2021-3918	external
https://bugzilla.suse.com/1192696	external
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2021-44907	external
https://bugzilla.suse.com/1197283	external
https://www.suse.com/security/cve/CVE-2022-0235	external
https://bugzilla.suse.com/1194819	external
https://www.suse.com/security/cve/CVE-2022-21824	external
https://bugzilla.suse.com/1194514	external
https://bugzilla.suse.com/1202688	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nodejs10",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nodejs10 fixes the following issues:\n\n- CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153).\n- CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963).\n- CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962).\n- CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696).\n- CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154).\n- CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514).\n- CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247).\n- CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283).\n- CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-1717,SUSE-SLE-Product-HPC-15-2022-1717,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-1717,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-1717,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1717,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1717,SUSE-SLE-Product-SLES-15-2022-1717,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-1717,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-1717,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1717,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1717,SUSE-SLE-Product-SLES_SAP-15-2022-1717,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-1717,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1717,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1717,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1717,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1717,SUSE-Storage-6-2022-1717,SUSE-Storage-7-2022-1717,openSUSE-SLE-15.3-2022-1717,openSUSE-SLE-15.4-2022-1717",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1717-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:1717-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221717-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:1717-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-May/011058.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1191962",
        "url": "https://bugzilla.suse.com/1191962"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1191963",
        "url": "https://bugzilla.suse.com/1191963"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192153",
        "url": "https://bugzilla.suse.com/1192153"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192154",
        "url": "https://bugzilla.suse.com/1192154"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192696",
        "url": "https://bugzilla.suse.com/1192696"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194514",
        "url": "https://bugzilla.suse.com/1194514"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194819",
        "url": "https://bugzilla.suse.com/1194819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197283",
        "url": "https://bugzilla.suse.com/1197283"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198247",
        "url": "https://bugzilla.suse.com/1198247"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-23343 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-23343/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32803 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32803/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32804 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32804/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3807 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3807/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3918 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44907 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44907/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0235 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0235/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21824 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21824/"
      }
    ],
    "title": "Security update for nodejs10",
    "tracking": {
      "current_release_date": "2022-05-17T15:43:16Z",
      "generator": {
        "date": "2022-05-17T15:43:16Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:1717-1",
      "initial_release_date": "2022-05-17T15:43:16Z",
      "revision_history": [
        {
          "date": "2022-05-17T15:43:16Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-10.24.1-150000.1.44.1.aarch64",
                "product": {
                  "name": "nodejs10-10.24.1-150000.1.44.1.aarch64",
                  "product_id": "nodejs10-10.24.1-150000.1.44.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
                "product": {
                  "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
                  "product_id": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "npm10-10.24.1-150000.1.44.1.aarch64",
                "product": {
                  "name": "npm10-10.24.1-150000.1.44.1.aarch64",
                  "product_id": "npm10-10.24.1-150000.1.44.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-10.24.1-150000.1.44.1.i586",
                "product": {
                  "name": "nodejs10-10.24.1-150000.1.44.1.i586",
                  "product_id": "nodejs10-10.24.1-150000.1.44.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs10-devel-10.24.1-150000.1.44.1.i586",
                "product": {
                  "name": "nodejs10-devel-10.24.1-150000.1.44.1.i586",
                  "product_id": "nodejs10-devel-10.24.1-150000.1.44.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "npm10-10.24.1-150000.1.44.1.i586",
                "product": {
                  "name": "npm10-10.24.1-150000.1.44.1.i586",
                  "product_id": "npm10-10.24.1-150000.1.44.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
                "product": {
                  "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
                  "product_id": "nodejs10-docs-10.24.1-150000.1.44.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
                "product": {
                  "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
                  "product_id": "nodejs10-10.24.1-150000.1.44.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
                "product": {
                  "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
                  "product_id": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "npm10-10.24.1-150000.1.44.1.ppc64le",
                "product": {
                  "name": "npm10-10.24.1-150000.1.44.1.ppc64le",
                  "product_id": "npm10-10.24.1-150000.1.44.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-10.24.1-150000.1.44.1.s390x",
                "product": {
                  "name": "nodejs10-10.24.1-150000.1.44.1.s390x",
                  "product_id": "nodejs10-10.24.1-150000.1.44.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
                "product": {
                  "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
                  "product_id": "nodejs10-devel-10.24.1-150000.1.44.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "npm10-10.24.1-150000.1.44.1.s390x",
                "product": {
                  "name": "npm10-10.24.1-150000.1.44.1.s390x",
                  "product_id": "npm10-10.24.1-150000.1.44.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nodejs10-10.24.1-150000.1.44.1.x86_64",
                "product": {
                  "name": "nodejs10-10.24.1-150000.1.44.1.x86_64",
                  "product_id": "nodejs10-10.24.1-150000.1.44.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
                "product": {
                  "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
                  "product_id": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "npm10-10.24.1-150000.1.44.1.x86_64",
                "product": {
                  "name": "npm10-10.24.1-150000.1.44.1.x86_64",
                  "product_id": "npm10-10.24.1-150000.1.44.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP1-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP1-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy 4.1",
                "product": {
                  "name": "SUSE Manager Proxy 4.1",
                  "product_id": "SUSE Manager Proxy 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Retail Branch Server 4.1",
                "product": {
                  "name": "SUSE Manager Retail Branch Server 4.1",
                  "product_id": "SUSE Manager Retail Branch Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server 4.1",
                "product": {
                  "name": "SUSE Manager Server 4.1",
                  "product_id": "SUSE Manager Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 6",
                "product": {
                  "name": "SUSE Enterprise Storage 6",
                  "product_id": "SUSE Enterprise Storage 6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7",
                "product": {
                  "name": "SUSE Enterprise Storage 7",
                  "product_id": "SUSE Enterprise Storage 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.3",
                "product": {
                  "name": "openSUSE Leap 15.3",
                  "product_id": "openSUSE Leap 15.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.3",
          "product_id": "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nodejs10-docs-10.24.1-150000.1.44.1.noarch as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch"
        },
        "product_reference": "nodejs10-docs-10.24.1-150000.1.44.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.s390x as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "npm10-10.24.1-150000.1.44.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        },
        "product_reference": "npm10-10.24.1-150000.1.44.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-23343",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-23343"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "All versions of package path-parse are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-23343",
          "url": "https://www.suse.com/security/cve/CVE-2021-23343"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192153 for CVE-2021-23343",
          "url": "https://bugzilla.suse.com/1192153"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-23343"
    },
    {
      "cve": "CVE-2021-32803",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32803"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The npm package \"tar\" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. `node-tar` aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary `stat` calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory. This order of operations resulted in the directory being created and added to the `node-tar` directory cache. When a directory is present in the directory cache, subsequent calls to mkdir for that directory are skipped. However, this is also where `node-tar` checks for symlinks occur. By first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass `node-tar` symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.3, 4.4.15, 5.0.7 and 6.1.2.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32803",
          "url": "https://www.suse.com/security/cve/CVE-2021-32803"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191962 for CVE-2021-32803",
          "url": "https://bugzilla.suse.com/1191962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191963 for CVE-2021-32803",
          "url": "https://bugzilla.suse.com/1191963"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32803"
    },
    {
      "cve": "CVE-2021-32804",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32804"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The npm package \"tar\" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization. node-tar aims to prevent extraction of absolute file paths by turning absolute paths into relative paths when the `preservePaths` flag is not set to `true`. This is achieved by stripping the absolute path root from any absolute file paths contained in a tar file. For example `/home/user/.bashrc` would turn into `home/user/.bashrc`. This logic was insufficient when file paths contained repeated path roots such as `////home/user/.bashrc`. `node-tar` would only strip a single path root from such paths. When given an absolute file path with repeating path roots, the resulting path (e.g. `///home/user/.bashrc`) would still resolve to an absolute path, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.2, 4.4.14, 5.0.6 and 6.1.1. Users may work around this vulnerability without upgrading by creating a custom `onentry` method which sanitizes the `entry.path` or a `filter` method which removes entries with absolute paths. See referenced GitHub Advisory for details. Be aware of CVE-2021-32803 which fixes a similar bug in later versions of tar.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32804",
          "url": "https://www.suse.com/security/cve/CVE-2021-32804"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191962 for CVE-2021-32804",
          "url": "https://bugzilla.suse.com/1191962"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32804"
    },
    {
      "cve": "CVE-2021-3807",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3807"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ansi-regex is vulnerable to Inefficient Regular Expression Complexity",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3807",
          "url": "https://www.suse.com/security/cve/CVE-2021-3807"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192154 for CVE-2021-3807",
          "url": "https://bugzilla.suse.com/1192154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3807"
    },
    {
      "cve": "CVE-2021-3918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3918",
          "url": "https://www.suse.com/security/cve/CVE-2021-3918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192696 for CVE-2021-3918",
          "url": "https://bugzilla.suse.com/1192696"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3918"
    },
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2021-44907",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44907"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44907",
          "url": "https://www.suse.com/security/cve/CVE-2021-44907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197283 for CVE-2021-44907",
          "url": "https://bugzilla.suse.com/1197283"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-44907"
    },
    {
      "cve": "CVE-2022-0235",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0235"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0235",
          "url": "https://www.suse.com/security/cve/CVE-2022-0235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194819 for CVE-2022-0235",
          "url": "https://bugzilla.suse.com/1194819"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0235"
    },
    {
      "cve": "CVE-2022-21824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Due to the formatting logic of the \"console.table()\" function it was not safe to allow user controlled input to be passed to the \"properties\" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be \"__proto__\". The prototype pollution has very limited control, in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js \u003e= 12.22.9, \u003e= 14.18.3, \u003e= 16.13.2, and \u003e= 17.3.1 use a null protoype for the object these properties are being assigned to.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
          "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
          "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
          "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21824",
          "url": "https://www.suse.com/security/cve/CVE-2022-21824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194514 for CVE-2022-21824",
          "url": "https://bugzilla.suse.com/1194514"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202688 for CVE-2022-21824",
          "url": "https://bugzilla.suse.com/1202688"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 6:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Enterprise Storage 7:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Enterprise Storage 7:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-BCL:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Proxy 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Proxy 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Retail Branch Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "SUSE Manager Server 4.1:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.ppc64le",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.s390x",
            "SUSE Manager Server 4.1:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.3:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.3:npm10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:nodejs10-devel-10.24.1-150000.1.44.1.x86_64",
            "openSUSE Leap 15.4:nodejs10-docs-10.24.1-150000.1.44.1.noarch",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.aarch64",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.ppc64le",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.s390x",
            "openSUSE Leap 15.4:npm10-10.24.1-150000.1.44.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-05-17T15:43:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-21824"
    }
  ]
}

SUSE-SU-2022:2144-1

Vulnerability from csaf_suse - Published: 2022-06-20 14:11 - Updated: 2022-06-20 14:11

Summary

Security update for SUSE Manager Server 4.2

Severity

Important

Notes

Title of the patch: Security update for SUSE Manager Server 4.2

Description of the patch: This update fixes the following issues: inter-server-sync: - version 0.2.2 * Parameter --channel-with-children didn't export data (bsc#1199089) * Clean rhnchannelcloned table to rebuild hierarchy (bsc#1197400) - Version 0.2.1 * Correct sequence in use for table rhnpackagekey(bsc#1197400) * Make Docker image export compatible with Suse Manager 4.2 - Version 0.2.0 * Allow images export and import (os based and Docker) prometheus-formula: - Version 0.6.2 * Allow prometheus-formula only for SUSE systems (bsc#1199149) salt-netapi-client: - Improve the hotfix for bsc#1192550 (bsc#1197449): smdba: - Don't package egg-info file for Enterprise Linux. spacecmd: - Version 4.2.17-1 * parse boolean paramaters correctly (bsc#1197689) spacewalk-backend: - version 4.2.22-1 * Do not raise error on file:// based DEB repo when looking for alternative Release files (bsc#1199142) - Version 4.2.21-1 * Improve parsing deb packages dependencies (bsc#1194594) spacewalk-certs-tools: - Version 4.2.16-1 * Add Salt Bundle support to bootstrap script generator spacewalk-java: - version 4.2.38-1 * Remove unused gson-extras.jar during build - version 4.2.37-1 * CVE-2022-31248: User enumeration via weak error message. (bsc#1199629) - version 4.2.36-1 * CVE-2022-21952: Unauthenticated remote Denial of Service via resource exhaustion. (bsc#1199512) - Version 4.2.35-1 * faster display installable packages list (bsc#1187333) * Pass ssh_salt_pre_flight_script and ssh_use_salt_thin parameters to the generated roster files to enable optional Salt Bundle support with Salt SSH * Fix reboot time on salt-ssh client(bsc#1197591) * detect free products in Alpha and Beta stage and prevent checks on openSUSE products (bsc#1197488) * Allow monitoring entitlement for debian 11 and 10 * Hide private methods in XMLRPC handlers * Warning log when hardware refresh result is not serializable * Optimize adding new products function (bsc#1193707) spacewalk-utils: - Version 4.2.16-1 * Add Debian 11 repositories spacewalk-web: - Version 4.2.27-1 * increase web page default timeout (bsc#1187333) * Add ssh_salt_pre_flight_script and ssh_use_salt_thin parameters to default rhn_web.conf * Upgrade minimist to fix CVE-2021-44906 * susemanager-nodejs-sdk-devel is now provided by spacewalk-web * Resolve race conditions in CLM (bsc#1195710) susemanager: - version 4.2.32-1 * Add python3-contextvars and python3-immutables to missing bootstrap repos (bsc#1200606) - version 4.2.31-1 * Add python3-gnupg to bootstrap repo definition for Ubuntu 20.04 (bsc#1200212) - version 4.2.30-1 * Fix a syntax problem at the bootstrap repository definitions - Version 4.2.29-1 * Add Salt Bundle support to mgr-create-bootstrap-repo * Enable bootstrapping for Debian 11 * fix SLE15 bootstrap repo definition (bsc#1197438) * Add SLES15SP4 and SUMA Proxy 4.3 to bootstrap repo definitions (bsc#1196702) * Add missing dependencies for Salt 3004 into bootstrap repository for SLE15 family (bsc#1198221) susemanager-doc-indexes: - Updated Salt version for Server and Proxy to 3004 - Added details to Client Configuration Guide on using Salt Bundle as optional - Updated saltversion attribute from 3002 to 3004 - In the Administration Guide, documented that monitoring tools are available in SUSE Linux Enterprise 12 and 15 and openSUSE Leap 15, but Grafana is not available on Proxy (bsc#1191143) - Documented Autoyast installation features in Autoyast section of the Client Configuration Guide - In Client Configuration Guide document Debian 11 as a supported OS as a client - In Client Configuration Guide, clarified client upgrade issues - In Client Configuration Guide, added information about registration of version 12 of SUSE Linux Enterprise clients - In Client Configuration Guide, mark the applying patches features as supported on Ubuntu - SLE Micro in Client Configuration Guide: Update version number from 5.0 to 5.1, and warn about Salt installation. susemanager-docs_en: - Updated Salt version for Server and Proxy to 3004 - Added details to Client Configuration Guide on using Salt Bundle as optional - In the Administration Guide, documented that monitoring tools are available in SUSE Linux Enterprise 12 and 15 and openSUSE Leap 15, but Grafana is not available on Proxy (bsc#1191143) - Documented Autoyast installation features in Autoyast section of the Client Configuration Guide - In Client Configuration Guide document Debian 11 as a supported OS as a client - In Client Configuration Guide, clarified client upgrade issues - In Client Configuration Guide, added information about registration of version 12 of SUSE Linux Enterprise clients - In Client Configuration Guide, mark the applying patches features as supported on Ubuntu - SLE Micro in Client Configuration Guide: Update version number from 5.0 to 5.1, and warn about Salt installation. susemanager-schema: - Version 4.2.22-1 * Add schema directory for susemanager-schema-4.2.21 susemanager-sls: - version 4.2.23-1 * Fix bootstrap repository URL resolution for Yum based clients with preflight script for Salt SSH - Version 4.2.22-1 * Add Salt Bundle support on bootstrapping * Add Salt SSH with Salt Bundle support * Add util.mgr_switch_to_venv_minion state to switch salt minions to use the Salt Bundle * Fix bootstrap repository path resolution for Oracle Linux * Handle salt bundle in set_proxy.sls susemanager-sync-data: - Version 4.2.12-1 * change release status of EL 7 and 8 aarch64 to released * change release status of Rocky Linux 8 x86_64 to released * add Debian 11 amd64 supportutils-plugin-salt: - Update to version 1.2.0 * Add support for Salt Bundle virtual-host-gatherer: - Version 1.0.23-1 * reformat the first 3 groups of the UUID for hardware versions >=13 in VMWare environment. * Fix shebangs to use python3 * Implement libvirt module How to apply this update: 1. Log in as root user to the SUSE Manager server. 2. Stop the Spacewalk service: `spacewalk-service stop` 3. Apply the patch using either zypper patch or YaST Online Update. 4. Start the Spacewalk service: `spacewalk-service start`

Patchnames: SUSE-2022-2144,SUSE-SLE-Module-SUSE-Manager-Proxy-4.2-2022-2144,SUSE-SLE-Module-SUSE-Manager-Server-4.2-2022-2144

CVE-2021-44906

5.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 63 products

Product	Version	Remediation
Unresolved product id: SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch	—	Vendor Fix

Threats

Impact moderate

CVE-2022-21952

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 63 products

Product	Version	Remediation
Unresolved product id: SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch	—	Vendor Fix

Threats

Impact important

CVE-2022-31248

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 63 products

Product	Version	Remediation
Unresolved product id: SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch	—	Vendor Fix

Threats

Impact moderate

References

34 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1187333	self
https://bugzilla.suse.com/1191143	self
https://bugzilla.suse.com/1192550	self
https://bugzilla.suse.com/1193707	self
https://bugzilla.suse.com/1194594	self
https://bugzilla.suse.com/1195710	self
https://bugzilla.suse.com/1196702	self
https://bugzilla.suse.com/1197400	self
https://bugzilla.suse.com/1197438	self
https://bugzilla.suse.com/1197449	self
https://bugzilla.suse.com/1197488	self
https://bugzilla.suse.com/1197591	self
https://bugzilla.suse.com/1197689	self
https://bugzilla.suse.com/1198221	self
https://bugzilla.suse.com/1199089	self
https://bugzilla.suse.com/1199142	self
https://bugzilla.suse.com/1199149	self
https://bugzilla.suse.com/1199512	self
https://bugzilla.suse.com/1199629	self
https://bugzilla.suse.com/1200212	self
https://bugzilla.suse.com/1200606	self
https://www.suse.com/security/cve/CVE-2021-44906/	self
https://www.suse.com/security/cve/CVE-2022-21952/	self
https://www.suse.com/security/cve/CVE-2022-31248/	self
https://www.suse.com/security/cve/CVE-2021-44906	external
https://bugzilla.suse.com/1198247	external
https://www.suse.com/security/cve/CVE-2022-21952	external
https://bugzilla.suse.com/1199512	external
https://www.suse.com/security/cve/CVE-2022-31248	external
https://bugzilla.suse.com/1199629	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for SUSE Manager Server 4.2",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThis update fixes the following issues:\n\ninter-server-sync:\n\n- version 0.2.2\n  * Parameter --channel-with-children didn\u0027t export data (bsc#1199089)\n  * Clean rhnchannelcloned table to rebuild hierarchy (bsc#1197400)\n- Version 0.2.1\n  * Correct sequence in use for table rhnpackagekey(bsc#1197400)\n  * Make Docker image export compatible with Suse Manager 4.2\n- Version 0.2.0\n  * Allow images export and import (os based and Docker)\n\nprometheus-formula:\n\n- Version 0.6.2\n  * Allow prometheus-formula only for SUSE systems (bsc#1199149)\n\nsalt-netapi-client:\n\n- Improve the hotfix for bsc#1192550 (bsc#1197449):\n\nsmdba:\n\n- Don\u0027t package egg-info file for Enterprise Linux.\n\nspacecmd:\n\n- Version 4.2.17-1\n  * parse boolean paramaters correctly (bsc#1197689)\n\nspacewalk-backend:\n\n- version 4.2.22-1\n  * Do not raise error on file:// based DEB repo when looking for alternative Release files (bsc#1199142)\n- Version 4.2.21-1\n  * Improve parsing deb packages dependencies (bsc#1194594)\n\nspacewalk-certs-tools:\n\n- Version 4.2.16-1\n  * Add Salt Bundle support to bootstrap script generator\n\nspacewalk-java:\n\n- version 4.2.38-1\n  * Remove unused gson-extras.jar during build \n- version 4.2.37-1\n  * CVE-2022-31248: User enumeration via weak error message. (bsc#1199629)\n- version 4.2.36-1\n  * CVE-2022-21952: Unauthenticated remote Denial of Service via resource exhaustion. (bsc#1199512)\n- Version 4.2.35-1\n  * faster display installable packages list (bsc#1187333)\n  * Pass ssh_salt_pre_flight_script and ssh_use_salt_thin parameters\n    to the generated roster files to enable optional Salt Bundle\n    support with Salt SSH\n  * Fix reboot time on salt-ssh client(bsc#1197591)\n  * detect free products in Alpha and Beta stage and prevent checks\n    on openSUSE products (bsc#1197488)\n  * Allow monitoring entitlement for debian 11 and 10\n  * Hide private methods in XMLRPC handlers\n  * Warning log when hardware refresh result is not serializable\n  * Optimize adding new products function (bsc#1193707)\n\nspacewalk-utils:\n\n- Version 4.2.16-1\n  * Add Debian 11 repositories\n\nspacewalk-web:\n\n- Version 4.2.27-1\n  * increase web page default timeout (bsc#1187333)\n  * Add ssh_salt_pre_flight_script and ssh_use_salt_thin parameters\n    to default rhn_web.conf\n  * Upgrade minimist to fix CVE-2021-44906\n  * susemanager-nodejs-sdk-devel is now provided by spacewalk-web\n  * Resolve race conditions in CLM (bsc#1195710)\n\nsusemanager:\n\n- version 4.2.32-1\n  * Add python3-contextvars and python3-immutables to missing bootstrap repos (bsc#1200606)\n- version 4.2.31-1\n  * Add python3-gnupg to bootstrap repo definition for Ubuntu 20.04 (bsc#1200212)\n- version 4.2.30-1\n  * Fix a syntax problem at the bootstrap repository definitions\n- Version 4.2.29-1\n  * Add Salt Bundle support to mgr-create-bootstrap-repo\n  * Enable bootstrapping for Debian 11\n  * fix SLE15 bootstrap repo definition (bsc#1197438)\n  * Add SLES15SP4 and SUMA Proxy 4.3 to bootstrap\n    repo definitions (bsc#1196702)\n  * Add missing dependencies for Salt 3004 into bootstrap repository\n    for SLE15 family (bsc#1198221)\n\nsusemanager-doc-indexes:\n\n- Updated Salt version for Server and Proxy to 3004\n- Added details to Client Configuration Guide on using Salt Bundle as optional\n- Updated saltversion attribute from 3002 to 3004 \n- In the Administration Guide, documented that monitoring tools are \n  available in SUSE Linux Enterprise 12 and 15 and openSUSE Leap 15, \n  but Grafana is not available on Proxy (bsc#1191143)\n- Documented Autoyast installation features in Autoyast section of \n  the Client Configuration Guide\n- In Client Configuration Guide document Debian 11 as a supported OS \n  as a client\n- In Client Configuration Guide, clarified client upgrade issues\n- In Client Configuration Guide, added information about registration \n  of version 12 of SUSE Linux Enterprise clients\n- In Client Configuration Guide, mark the applying patches features as \n  supported on Ubuntu\n- SLE Micro in Client Configuration Guide: Update version number from\n  5.0 to 5.1, and warn about Salt installation. \n\nsusemanager-docs_en:\n\n- Updated Salt version for Server and Proxy to 3004\n- Added details to Client Configuration Guide on using Salt Bundle as optional\n- In the Administration Guide, documented that monitoring tools are \n  available in SUSE Linux Enterprise 12 and 15 and openSUSE Leap 15, \n  but Grafana is not available on Proxy (bsc#1191143)\n- Documented Autoyast installation features in Autoyast section of \n  the Client Configuration Guide\n- In Client Configuration Guide document Debian 11 as a supported OS \n  as a client\n- In Client Configuration Guide, clarified client upgrade issues\n- In Client Configuration Guide, added information about registration \n  of version 12 of SUSE Linux Enterprise clients\n- In Client Configuration Guide, mark the applying patches features as \n  supported on Ubuntu\n- SLE Micro in Client Configuration Guide: Update version number from\n  5.0 to 5.1, and warn about Salt installation. \n\nsusemanager-schema:\n\n- Version 4.2.22-1\n  * Add schema directory for susemanager-schema-4.2.21\n\nsusemanager-sls:\n\n- version 4.2.23-1\n  * Fix bootstrap repository URL resolution for Yum based clients with preflight script for Salt SSH\n- Version 4.2.22-1\n  * Add Salt Bundle support on bootstrapping\n  * Add Salt SSH with Salt Bundle support\n  * Add util.mgr_switch_to_venv_minion state to switch salt minions\n    to use the Salt Bundle\n  * Fix bootstrap repository path resolution for Oracle Linux\n  * Handle salt bundle in set_proxy.sls\n\nsusemanager-sync-data:\n\n- Version 4.2.12-1\n  * change release status of EL 7 and 8 aarch64 to released\n  * change release status of Rocky Linux 8 x86_64 to released\n  * add Debian 11 amd64\n\nsupportutils-plugin-salt:\n\n- Update to version 1.2.0\n  * Add support for Salt Bundle\n\nvirtual-host-gatherer:\n\n- Version 1.0.23-1\n  * reformat the first 3 groups of the UUID for hardware versions \u003e=13\n    in VMWare environment.\n  * Fix shebangs to use python3\n  * Implement libvirt module\n\nHow to apply this update:\n\n1. Log in as root user to the SUSE Manager server.\n2. Stop the Spacewalk service:\n`spacewalk-service stop`\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Start the Spacewalk service:\n`spacewalk-service start`\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-2144,SUSE-SLE-Module-SUSE-Manager-Proxy-4.2-2022-2144,SUSE-SLE-Module-SUSE-Manager-Server-4.2-2022-2144",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_2144-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:2144-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20222144-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:2144-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-June/011319.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1187333",
        "url": "https://bugzilla.suse.com/1187333"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1191143",
        "url": "https://bugzilla.suse.com/1191143"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192550",
        "url": "https://bugzilla.suse.com/1192550"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1193707",
        "url": "https://bugzilla.suse.com/1193707"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194594",
        "url": "https://bugzilla.suse.com/1194594"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195710",
        "url": "https://bugzilla.suse.com/1195710"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196702",
        "url": "https://bugzilla.suse.com/1196702"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197400",
        "url": "https://bugzilla.suse.com/1197400"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197438",
        "url": "https://bugzilla.suse.com/1197438"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197449",
        "url": "https://bugzilla.suse.com/1197449"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197488",
        "url": "https://bugzilla.suse.com/1197488"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197591",
        "url": "https://bugzilla.suse.com/1197591"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1197689",
        "url": "https://bugzilla.suse.com/1197689"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1198221",
        "url": "https://bugzilla.suse.com/1198221"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1199089",
        "url": "https://bugzilla.suse.com/1199089"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1199142",
        "url": "https://bugzilla.suse.com/1199142"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1199149",
        "url": "https://bugzilla.suse.com/1199149"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1199512",
        "url": "https://bugzilla.suse.com/1199512"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1199629",
        "url": "https://bugzilla.suse.com/1199629"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1200212",
        "url": "https://bugzilla.suse.com/1200212"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1200606",
        "url": "https://bugzilla.suse.com/1200606"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-44906 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-44906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21952 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21952/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-31248 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-31248/"
      }
    ],
    "title": "Security update for SUSE Manager Server 4.2",
    "tracking": {
      "current_release_date": "2022-06-20T14:11:52Z",
      "generator": {
        "date": "2022-06-20T14:11:52Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:2144-1",
      "initial_release_date": "2022-06-20T14:11:52Z",
      "revision_history": [
        {
          "date": "2022-06-20T14:11:52Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "inter-server-sync-0.2.2-150300.8.17.1.aarch64",
                "product": {
                  "name": "inter-server-sync-0.2.2-150300.8.17.1.aarch64",
                  "product_id": "inter-server-sync-0.2.2-150300.8.17.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "smdba-1.7.10-0.150300.3.6.1.aarch64",
                "product": {
                  "name": "smdba-1.7.10-0.150300.3.6.1.aarch64",
                  "product_id": "smdba-1.7.10-0.150300.3.6.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-4.2.32-150300.3.31.1.aarch64",
                "product": {
                  "name": "susemanager-4.2.32-150300.3.31.1.aarch64",
                  "product_id": "susemanager-4.2.32-150300.3.31.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-tools-4.2.32-150300.3.31.1.aarch64",
                "product": {
                  "name": "susemanager-tools-4.2.32-150300.3.31.1.aarch64",
                  "product_id": "susemanager-tools-4.2.32-150300.3.31.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "prometheus-formula-0.6.2-150300.3.14.1.noarch",
                "product": {
                  "name": "prometheus-formula-0.6.2-150300.3.14.1.noarch",
                  "product_id": "prometheus-formula-0.6.2-150300.3.14.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "python2-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                "product": {
                  "name": "python2-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                  "product_id": "python2-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                "product": {
                  "name": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                  "product_id": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "salt-netapi-client-0.19.0-150300.3.6.1.noarch",
                "product": {
                  "name": "salt-netapi-client-0.19.0-150300.3.6.1.noarch",
                  "product_id": "salt-netapi-client-0.19.0-150300.3.6.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacecmd-4.2.17-150300.4.21.4.noarch",
                "product": {
                  "name": "spacecmd-4.2.17-150300.4.21.4.noarch",
                  "product_id": "spacecmd-4.2.17-150300.4.21.4.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-app-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-cdn-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-cdn-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-cdn-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-server-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
                "product": {
                  "name": "spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
                  "product_id": "spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-base-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-base-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-base-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                "product": {
                  "name": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
                  "product_id": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-dobby-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-dobby-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-dobby-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-html-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-html-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-html-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-html-debug-4.2.27-150300.3.21.7.noarch",
                "product": {
                  "name": "spacewalk-html-debug-4.2.27-150300.3.21.7.noarch",
                  "product_id": "spacewalk-html-debug-4.2.27-150300.3.21.7.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-java-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-java-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-java-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-java-apidoc-sources-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-java-apidoc-sources-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-java-apidoc-sources-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-java-config-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-java-lib-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
                "product": {
                  "name": "spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
                  "product_id": "spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-utils-4.2.16-150300.3.15.5.noarch",
                "product": {
                  "name": "spacewalk-utils-4.2.16-150300.3.15.5.noarch",
                  "product_id": "spacewalk-utils-4.2.16-150300.3.15.5.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
                "product": {
                  "name": "spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
                  "product_id": "spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
                "product": {
                  "name": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
                  "product_id": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
                "product": {
                  "name": "susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
                  "product_id": "susemanager-doc-indexes-4.2-150300.12.27.6.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-docs_en-4.2-150300.12.27.1.noarch",
                "product": {
                  "name": "susemanager-docs_en-4.2-150300.12.27.1.noarch",
                  "product_id": "susemanager-docs_en-4.2-150300.12.27.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
                "product": {
                  "name": "susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
                  "product_id": "susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-schema-4.2.22-150300.3.21.6.noarch",
                "product": {
                  "name": "susemanager-schema-4.2.22-150300.3.21.6.noarch",
                  "product_id": "susemanager-schema-4.2.22-150300.3.21.6.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-schema-sanity-4.2.22-150300.3.21.6.noarch",
                "product": {
                  "name": "susemanager-schema-sanity-4.2.22-150300.3.21.6.noarch",
                  "product_id": "susemanager-schema-sanity-4.2.22-150300.3.21.6.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-sls-4.2.23-150300.3.25.4.noarch",
                "product": {
                  "name": "susemanager-sls-4.2.23-150300.3.25.4.noarch",
                  "product_id": "susemanager-sls-4.2.23-150300.3.25.4.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
                "product": {
                  "name": "susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
                  "product_id": "susemanager-sync-data-4.2.12-150300.3.18.3.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
                "product": {
                  "name": "uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
                  "product_id": "uyuni-config-modules-4.2.23-150300.3.25.4.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-1.0.23-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-Libvirt-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-Libvirt-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-Libvirt-1.0.23-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch",
                "product": {
                  "name": "virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch",
                  "product_id": "virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
                "product": {
                  "name": "inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
                  "product_id": "inter-server-sync-0.2.2-150300.8.17.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "smdba-1.7.10-0.150300.3.6.1.ppc64le",
                "product": {
                  "name": "smdba-1.7.10-0.150300.3.6.1.ppc64le",
                  "product_id": "smdba-1.7.10-0.150300.3.6.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-4.2.32-150300.3.31.1.ppc64le",
                "product": {
                  "name": "susemanager-4.2.32-150300.3.31.1.ppc64le",
                  "product_id": "susemanager-4.2.32-150300.3.31.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
                "product": {
                  "name": "susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
                  "product_id": "susemanager-tools-4.2.32-150300.3.31.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "inter-server-sync-0.2.2-150300.8.17.1.s390x",
                "product": {
                  "name": "inter-server-sync-0.2.2-150300.8.17.1.s390x",
                  "product_id": "inter-server-sync-0.2.2-150300.8.17.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "smdba-1.7.10-0.150300.3.6.1.s390x",
                "product": {
                  "name": "smdba-1.7.10-0.150300.3.6.1.s390x",
                  "product_id": "smdba-1.7.10-0.150300.3.6.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-4.2.32-150300.3.31.1.s390x",
                "product": {
                  "name": "susemanager-4.2.32-150300.3.31.1.s390x",
                  "product_id": "susemanager-4.2.32-150300.3.31.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-tools-4.2.32-150300.3.31.1.s390x",
                "product": {
                  "name": "susemanager-tools-4.2.32-150300.3.31.1.s390x",
                  "product_id": "susemanager-tools-4.2.32-150300.3.31.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "inter-server-sync-0.2.2-150300.8.17.1.x86_64",
                "product": {
                  "name": "inter-server-sync-0.2.2-150300.8.17.1.x86_64",
                  "product_id": "inter-server-sync-0.2.2-150300.8.17.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "smdba-1.7.10-0.150300.3.6.1.x86_64",
                "product": {
                  "name": "smdba-1.7.10-0.150300.3.6.1.x86_64",
                  "product_id": "smdba-1.7.10-0.150300.3.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-4.2.32-150300.3.31.1.x86_64",
                "product": {
                  "name": "susemanager-4.2.32-150300.3.31.1.x86_64",
                  "product_id": "susemanager-4.2.32-150300.3.31.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "susemanager-tools-4.2.32-150300.3.31.1.x86_64",
                "product": {
                  "name": "susemanager-tools-4.2.32-150300.3.31.1.x86_64",
                  "product_id": "susemanager-tools-4.2.32-150300.3.31.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy Module 4.2",
                "product": {
                  "name": "SUSE Manager Proxy Module 4.2",
                  "product_id": "SUSE Manager Proxy Module 4.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-suse-manager-proxy:4.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server Module 4.2",
                "product": {
                  "name": "SUSE Manager Server Module 4.2",
                  "product_id": "SUSE Manager Server Module 4.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-suse-manager-server:4.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
        },
        "product_reference": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacecmd-4.2.17-150300.4.21.4.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch"
        },
        "product_reference": "spacecmd-4.2.17-150300.4.21.4.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
        },
        "product_reference": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch as component of SUSE Manager Proxy Module 4.2",
          "product_id": "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch"
        },
        "product_reference": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Proxy Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "inter-server-sync-0.2.2-150300.8.17.1.ppc64le as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le"
        },
        "product_reference": "inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "inter-server-sync-0.2.2-150300.8.17.1.s390x as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x"
        },
        "product_reference": "inter-server-sync-0.2.2-150300.8.17.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "inter-server-sync-0.2.2-150300.8.17.1.x86_64 as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64"
        },
        "product_reference": "inter-server-sync-0.2.2-150300.8.17.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-formula-0.6.2-150300.3.14.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch"
        },
        "product_reference": "prometheus-formula-0.6.2-150300.3.14.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
        },
        "product_reference": "python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "salt-netapi-client-0.19.0-150300.3.6.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch"
        },
        "product_reference": "salt-netapi-client-0.19.0-150300.3.6.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "smdba-1.7.10-0.150300.3.6.1.ppc64le as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le"
        },
        "product_reference": "smdba-1.7.10-0.150300.3.6.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "smdba-1.7.10-0.150300.3.6.1.s390x as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x"
        },
        "product_reference": "smdba-1.7.10-0.150300.3.6.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "smdba-1.7.10-0.150300.3.6.1.x86_64 as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64"
        },
        "product_reference": "smdba-1.7.10-0.150300.3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacecmd-4.2.17-150300.4.21.4.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch"
        },
        "product_reference": "spacecmd-4.2.17-150300.4.21.4.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-app-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-server-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch"
        },
        "product_reference": "spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-base-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-base-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch"
        },
        "product_reference": "spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-html-4.2.27-150300.3.21.7.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch"
        },
        "product_reference": "spacewalk-html-4.2.27-150300.3.21.7.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-java-4.2.38-150300.3.35.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch"
        },
        "product_reference": "spacewalk-java-4.2.38-150300.3.35.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-java-config-4.2.38-150300.3.35.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch"
        },
        "product_reference": "spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-java-lib-4.2.38-150300.3.35.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch"
        },
        "product_reference": "spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch"
        },
        "product_reference": "spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch"
        },
        "product_reference": "spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-utils-4.2.16-150300.3.15.5.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch"
        },
        "product_reference": "spacewalk-utils-4.2.16-150300.3.15.5.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch"
        },
        "product_reference": "spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch"
        },
        "product_reference": "supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-4.2.32-150300.3.31.1.ppc64le as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le"
        },
        "product_reference": "susemanager-4.2.32-150300.3.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-4.2.32-150300.3.31.1.s390x as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x"
        },
        "product_reference": "susemanager-4.2.32-150300.3.31.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-4.2.32-150300.3.31.1.x86_64 as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64"
        },
        "product_reference": "susemanager-4.2.32-150300.3.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-doc-indexes-4.2-150300.12.27.6.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch"
        },
        "product_reference": "susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-docs_en-4.2-150300.12.27.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch"
        },
        "product_reference": "susemanager-docs_en-4.2-150300.12.27.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch"
        },
        "product_reference": "susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-schema-4.2.22-150300.3.21.6.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch"
        },
        "product_reference": "susemanager-schema-4.2.22-150300.3.21.6.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-sls-4.2.23-150300.3.25.4.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch"
        },
        "product_reference": "susemanager-sls-4.2.23-150300.3.25.4.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-sync-data-4.2.12-150300.3.18.3.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch"
        },
        "product_reference": "susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-tools-4.2.32-150300.3.31.1.ppc64le as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le"
        },
        "product_reference": "susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-tools-4.2.32-150300.3.31.1.s390x as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x"
        },
        "product_reference": "susemanager-tools-4.2.32-150300.3.31.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "susemanager-tools-4.2.32-150300.3.31.1.x86_64 as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64"
        },
        "product_reference": "susemanager-tools-4.2.32-150300.3.31.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "uyuni-config-modules-4.2.23-150300.3.25.4.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch"
        },
        "product_reference": "uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "virtual-host-gatherer-1.0.23-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch"
        },
        "product_reference": "virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch"
        },
        "product_reference": "virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch"
        },
        "product_reference": "virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch"
        },
        "product_reference": "virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch as component of SUSE Manager Server Module 4.2",
          "product_id": "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
        },
        "product_reference": "virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch",
        "relates_to_product_reference": "SUSE Manager Server Module 4.2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-44906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Minimist \u003c=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
          "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
          "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
          "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-44906",
          "url": "https://www.suse.com/security/cve/CVE-2021-44906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198247 for CVE-2021-44906",
          "url": "https://bugzilla.suse.com/1198247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-06-20T14:11:52Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2022-21952",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21952"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to easily exhaust available disk resources leading to DoS. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46. SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
          "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
          "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
          "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21952",
          "url": "https://www.suse.com/security/cve/CVE-2022-21952"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199512 for CVE-2022-21952",
          "url": "https://bugzilla.suse.com/1199512"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-06-20T14:11:52Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-21952"
    },
    {
      "cve": "CVE-2022-31248",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-31248"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A Observable Response Discrepancy vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to discover valid usernames. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46-1. SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37-1.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
          "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
          "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
          "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
          "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
          "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
          "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
          "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
          "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
          "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
          "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-31248",
          "url": "https://www.suse.com/security/cve/CVE-2022-31248"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199629 for CVE-2022-31248",
          "url": "https://bugzilla.suse.com/1199629"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Manager Proxy Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Proxy Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Proxy Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.ppc64le",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.s390x",
            "SUSE Manager Server Module 4.2:inter-server-sync-0.2.2-150300.8.17.1.x86_64",
            "SUSE Manager Server Module 4.2:prometheus-formula-0.6.2-150300.3.14.1.noarch",
            "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:salt-netapi-client-0.19.0-150300.3.6.1.noarch",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.ppc64le",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.s390x",
            "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.6.1.x86_64",
            "SUSE Manager Server Module 4.2:spacecmd-4.2.17-150300.4.21.4.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.22-150300.4.23.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.16-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-html-4.2.27-150300.3.21.7.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.38-150300.3.35.1.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:spacewalk-utils-extras-4.2.16-150300.3.15.5.noarch",
            "SUSE Manager Server Module 4.2:supportutils-plugin-salt-1.2.0-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.27.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.27.1.noarch",
            "SUSE Manager Server Module 4.2:susemanager-schema-4.2.22-150300.3.21.6.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sls-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:susemanager-sync-data-4.2.12-150300.3.18.3.noarch",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.ppc64le",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.s390x",
            "SUSE Manager Server Module 4.2:susemanager-tools-4.2.32-150300.3.31.1.x86_64",
            "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.23-150300.3.25.4.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Kubernetes-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-Nutanix-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-VMware-1.0.23-150300.3.3.1.noarch",
            "SUSE Manager Server Module 4.2:virtual-host-gatherer-libcloud-1.0.23-150300.3.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-06-20T14:11:52Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-31248"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-44906 (GCVE-0-2021-44906)

Tags

Sightings

Nomenclature