Vulnerability-Lookup

CVE-2022-42004 (GCVE-0-2022-42004)

Vulnerability from cvelistv5 – Published: 2022-10-02 00:00 – Updated: 2024-08-03 12:56

Summary

In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

7 references

URL	Tags
https://github.com/FasterXML/jackson-databind/iss…
https://github.com/FasterXML/jackson-databind/com…
https://bugs.chromium.org/p/oss-fuzz/issues/detai…
https://security.gentoo.org/glsa/202210-21	vendor-advisory
https://www.debian.org/security/2022/dsa-5283	vendor-advisory
https://security.netapp.com/advisory/ntap-2022111…
https://lists.debian.org/debian-lts-announce/2022…	mailing-list

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T12:56:39.182Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/FasterXML/jackson-databind/issues/3582"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50490"
          },
          {
            "name": "GLSA-202210-21",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202210-21"
          },
          {
            "name": "DSA-5283",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5283"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20221118-0008/"
          },
          {
            "name": "[debian-lts-announce] 20221127 [SECURITY] [DLA 3207-1] jackson-databind security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/11/msg00035.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-11-27T00:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/FasterXML/jackson-databind/issues/3582"
        },
        {
          "url": "https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88"
        },
        {
          "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50490"
        },
        {
          "name": "GLSA-202210-21",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202210-21"
        },
        {
          "name": "DSA-5283",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2022/dsa-5283"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20221118-0008/"
        },
        {
          "name": "[debian-lts-announce] 20221127 [SECURITY] [DLA 3207-1] jackson-databind security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/11/msg00035.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2022-42004",
    "datePublished": "2022-10-02T00:00:00.000Z",
    "dateReserved": "2022-10-02T00:00:00.000Z",
    "dateUpdated": "2024-08-03T12:56:39.182Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-42004",
      "date": "2026-05-30",
      "epss": "0.0025",
      "percentile": "0.48446"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-42004\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2022-10-02T05:15:09.237\",\"lastModified\":\"2024-11-21T07:24:15.277\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization.\"},{\"lang\":\"es\",\"value\":\"En FasterXML jackson-databind versiones anteriores a 2.13.4, el agotamiento de los recursos puede ocurrir debido a una falta de comprobaci\u00f3n en BeanDeserializer._deserializeFromArray para impedir el uso de arrays profundamente anidados. Una aplicaci\u00f3n es vulnerable s\u00f3lo con determinadas opciones personalizadas para la deserializaci\u00f3n\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-502\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fasterxml:jackson-databind:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.12.7.1\",\"matchCriteriaId\":\"0848F177-1977-4C9C-B91A-7374FF25F335\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fasterxml:jackson-databind:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.13.0\",\"versionEndExcluding\":\"2.13.4\",\"matchCriteriaId\":\"2BB48E8E-EB2F-46D1-BD98-982FB3528273\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:quarkus:quarkus:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.13.0\",\"matchCriteriaId\":\"5CA36870-3A63-428D-BC49-4924FF75FAAD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"}]}]}],\"references\":[{\"url\":\"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50490\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/FasterXML/jackson-databind/issues/3582\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/11/msg00035.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-21\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0008/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5283\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50490\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/FasterXML/jackson-databind/issues/3582\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/11/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0008/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5283\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

WID-SEC-W-2022-2286

Vulnerability from csaf_certbund - Published: 2022-12-11 23:00 - Updated: 2023-02-27 23:00

Summary

IBM Business Automation Workflow: Mehrere Schwachstellen ermöglichen Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: IBM Business Automation Workflow ist eine Lösung zur Automatisierung von Arbeitsabläufen.

Angriff: Ein Angreifer kann mehrere Schwachstellen in IBM Business Automation Workflow ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Sonstiges

CVE-2022-42004

In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Pufferüberläufe, einer fehlenden Begrenzung der Verschachtelungstiefe für Sammlungen und einer fehlenden Prüfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu öffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion.

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-42003

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-38752

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-38751

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-38750

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-38749

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

CVE-2022-25857

Affected products

Known affected 6 products

Product	Identifier	Version
IBM Business Automation Workflow 20.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:20.0.0.2`	—
IBM Business Automation Workflow 19.0.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:19.0.0.3`	—
IBM Business Automation Workflow 22.0.1 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.1`	—
IBM Business Automation Workflow 18.0.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:18.0.0.2`	—
IBM Business Automation Workflow 22.0.2 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:22.0.2`	—
IBM Business Automation Workflow 21.0.3 IBM / Business Automation Workflow	`cpe:/a:ibm:business_automation_workflow:21.0.3`	—

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/6958693	external
https://www.ibm.com/support/pages/node/6845796	external
https://www.ibm.com/support/pages/node/6856761	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM Business Automation Workflow ist eine L\u00f6sung zur Automatisierung von Arbeitsabl\u00e4ufen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in IBM Business Automation Workflow ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-2286 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2286.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-2286 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2286"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6958693 vom 2023-02-27",
        "url": "https://www.ibm.com/support/pages/node/6958693"
      },
      {
        "category": "external",
        "summary": "IBM Security Advisory vom 2022-12-11",
        "url": "https://www.ibm.com/support/pages/node/6845796"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6856761 vom 2023-01-20",
        "url": "https://www.ibm.com/support/pages/node/6856761"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM Business Automation Workflow: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2023-02-27T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:39:40.132+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2022-2286",
      "initial_release_date": "2022-12-11T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-12-11T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-01-22T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-02-27T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 21.0.3",
                "product": {
                  "name": "IBM Business Automation Workflow 21.0.3",
                  "product_id": "1150328",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:21.0.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 22.0.1",
                "product": {
                  "name": "IBM Business Automation Workflow 22.0.1",
                  "product_id": "1268578",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:22.0.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 18.0.0.2",
                "product": {
                  "name": "IBM Business Automation Workflow 18.0.0.2",
                  "product_id": "428468",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:18.0.0.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 19.0.0.3",
                "product": {
                  "name": "IBM Business Automation Workflow 19.0.0.3",
                  "product_id": "672244",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:19.0.0.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 20.0.0.2",
                "product": {
                  "name": "IBM Business Automation Workflow 20.0.0.2",
                  "product_id": "867560",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:20.0.0.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Business Automation Workflow 22.0.2",
                "product": {
                  "name": "IBM Business Automation Workflow 22.0.2",
                  "product_id": "T025770",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:business_automation_workflow:22.0.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Business Automation Workflow"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-42004",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-38752",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-38752"
    },
    {
      "cve": "CVE-2022-38751",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-38751"
    },
    {
      "cve": "CVE-2022-38750",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-38750"
    },
    {
      "cve": "CVE-2022-38749",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-38749"
    },
    {
      "cve": "CVE-2022-25857",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Business Automation Workflow existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer stapelbasierter Puffer\u00fcberl\u00e4ufe, einer fehlenden Begrenzung der Verschachtelungstiefe f\u00fcr Sammlungen und einer fehlenden Pr\u00fcfung in den Primitive Value Deserializern und den BeanDeserializern in den Komponenten SnakeYAML und FasterXML jackson-databind. Ein entfernter anonymer oder lokaler Angreifer kann diese Schwachstellen ausnutzen, indem er eine speziell gestaltete Anfrage sendet oder ein Opfer dazu bringt, eine speziell gestaltete Datei zu \u00f6ffnen, um einen Denial-of-Service-Zustand zu verursachen. Die erfolgreiche Ausnutzung einiger der Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "867560",
          "672244",
          "1268578",
          "428468",
          "T025770",
          "1150328"
        ]
      },
      "release_date": "2022-12-11T23:00:00.000+00:00",
      "title": "CVE-2022-25857"
    }
  ]
}

WID-SEC-W-2023-0239

Vulnerability from csaf_certbund - Published: 2023-01-31 23:00 - Updated: 2025-06-24 22:00

Summary

Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: JBoss Enterprise Application Platform ist eine skalierbare Plattform für Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat JBoss Enterprise Application Platform ausnutzen, um beliebigen Programmcode auszuführen, ein Cross-Site-Scritping-Angriff durchzuführen, Informationen offenzulegen, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Linux

CVE-2015-9251

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2016-10735

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2017-18214

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2018-14040

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2018-14041

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2018-14042

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2019-11358

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2019-8331

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2020-11022

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2020-11023

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-3143

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-40149

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-40150

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-40152

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-42003

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-42004

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-45047

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-45693

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

CVE-2022-46364

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift container platform 4.0.51 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.0.51`	container platform 4.0.51
Red Hat JBoss Enterprise Application Platform <7.4.9 Red Hat / JBoss Enterprise Application Platform		<7.4.9
Red Hat JBoss Enterprise Application Platform <7.1.9 Red Hat / JBoss Enterprise Application Platform		<7.1.9
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP F5	`cpe:/a:f5:big-ip:-`	—
Red Hat JBoss A-MQ Streams <2.4.0 Red Hat / JBoss A-MQ		Streams <2.4.0
Red Hat JBoss Enterprise Application Platform <7.3.12 Red Hat / JBoss Enterprise Application Platform		<7.3.12
Hitachi Ops Center <Common Services 10.9.3-00 Hitachi / Ops Center		<Common Services 10.9.3-00
Hitachi Ops Center Hitachi / Ops Center	`cpe:/a:hitachi:ops_center:-`	—
Red Hat JBoss Enterprise Application Platform <7.3.13 Red Hat / JBoss Enterprise Application Platform		<7.3.13

References

26 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2023:0552	external
https://access.redhat.com/errata/RHSA-2023:0553	external
https://access.redhat.com/errata/RHSA-2023:0554	external
https://access.redhat.com/errata/RHSA-2023:0556	external
https://access.redhat.com/errata/RHSA-2023:0560	external
https://access.redhat.com/errata/RHSA-2023:0713	external
https://access.redhat.com/errata/RHSA-2023:1044	external
https://access.redhat.com/errata/RHSA-2023:1043	external
https://access.redhat.com/errata/RHSA-2023:1049	external
https://access.redhat.com/errata/RHSA-2023:1047	external
https://access.redhat.com/errata/RHSA-2023:1045	external
https://my.f5.com/manage/s/article/K48382137	external
https://my.f5.com/manage/s/article/K05380109	external
https://access.redhat.com/errata/RHSA-2023:3223	external
https://www.hitachi.com/products/it/software/secu…	external
https://access.redhat.com/errata/RHSA-2023:4983	external
https://www.hitachi.com/products/it/software/secu…	external
https://www.dell.com/support/kbdoc/000220669/dsa-2023-=	external
https://access.redhat.com/errata/RHSA-2024:1027	external
https://access.redhat.com/errata/RHSA-2025:1746	external
https://access.redhat.com/errata/RHSA-2025:1747	external
https://access.redhat.com/errata/RHSA-2025:4437	external
https://access.redhat.com/errata/RHSA-2025:9583	external
https://access.redhat.com/errata/RHSA-2025:9582	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "JBoss Enterprise Application Platform ist eine skalierbare Plattform f\u00fcr Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat JBoss Enterprise Application Platform ausnutzen, um beliebigen Programmcode auszuf\u00fchren, ein Cross-Site-Scritping-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0239 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0239.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0239 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0239"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0552 vom 2023-01-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:0552"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0553 vom 2023-01-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:0553"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0554 vom 2023-01-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:0554"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0556 vom 2023-01-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:0556"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0560 vom 2023-02-08",
        "url": "https://access.redhat.com/errata/RHSA-2023:0560"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0713 vom 2023-02-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:0713"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1044 vom 2023-03-02",
        "url": "https://access.redhat.com/errata/RHSA-2023:1044"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1043 vom 2023-03-02",
        "url": "https://access.redhat.com/errata/RHSA-2023:1043"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1049 vom 2023-03-02",
        "url": "https://access.redhat.com/errata/RHSA-2023:1049"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1047 vom 2023-03-02",
        "url": "https://access.redhat.com/errata/RHSA-2023:1047"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1045 vom 2023-03-02",
        "url": "https://access.redhat.com/errata/RHSA-2023:1045"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K48382137 vom 2023-04-21",
        "url": "https://my.f5.com/manage/s/article/K48382137"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K05380109 vom 2023-04-20",
        "url": "https://my.f5.com/manage/s/article/K05380109"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3223 vom 2023-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:3223"
      },
      {
        "category": "external",
        "summary": "Hitachi Software Vulnerability Information hitachi-sec-2023-116 vom 2023-05-23",
        "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-116/index.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4983 vom 2023-09-05",
        "url": "https://access.redhat.com/errata/RHSA-2023:4983"
      },
      {
        "category": "external",
        "summary": "Hitachi Vulnerability Information HITACHI-SEC-2023-143 vom 2023-10-03",
        "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2023-143/index.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-409 vom 2023-12-23",
        "url": "https://www.dell.com/support/kbdoc/000220669/dsa-2023-="
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1027 vom 2024-02-28",
        "url": "https://access.redhat.com/errata/RHSA-2024:1027"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:1746 vom 2025-02-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:1746"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:1747 vom 2025-02-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:1747"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:4437 vom 2025-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2025:4437"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:9583 vom 2025-06-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:9583"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:9582 vom 2025-06-25",
        "url": "https://access.redhat.com/errata/RHSA-2025:9582"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-06-24T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-25T11:35:50.369+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2023-0239",
      "initial_release_date": "2023-01-31T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-01-31T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-02-08T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-09T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-03-01T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-04-20T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von F5 aufgenommen"
        },
        {
          "date": "2023-05-18T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-05-22T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von HITACHI aufgenommen"
        },
        {
          "date": "2023-09-05T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-03T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von HITACHI aufgenommen"
        },
        {
          "date": "2023-12-26T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-02-28T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-02-23T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-05-04T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-06-24T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "14"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "F5 BIG-IP",
            "product": {
              "name": "F5 BIG-IP",
              "product_id": "T001663",
              "product_identification_helper": {
                "cpe": "cpe:/a:f5:big-ip:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "F5"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Hitachi Ops Center",
                "product": {
                  "name": "Hitachi Ops Center",
                  "product_id": "T017562",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hitachi:ops_center:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003cCommon Services 10.9.3-00",
                "product": {
                  "name": "Hitachi Ops Center \u003cCommon Services 10.9.3-00",
                  "product_id": "T030195"
                }
              },
              {
                "category": "product_version",
                "name": "Common Services 10.9.3-00",
                "product": {
                  "name": "Hitachi Ops Center Common Services 10.9.3-00",
                  "product_id": "T030195-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hitachi:ops_center:common_services_10.9.3-00"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Ops Center"
          }
        ],
        "category": "vendor",
        "name": "Hitachi"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Streams \u003c2.4.0",
                "product": {
                  "name": "Red Hat JBoss A-MQ Streams \u003c2.4.0",
                  "product_id": "T027764"
                }
              },
              {
                "category": "product_version",
                "name": "Streams 2.4.0",
                "product": {
                  "name": "Red Hat JBoss A-MQ Streams 2.4.0",
                  "product_id": "T027764-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_amq:streams_2.4.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "JBoss A-MQ"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.4.9",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform \u003c7.4.9",
                  "product_id": "T026073"
                }
              },
              {
                "category": "product_version",
                "name": "7.4.9",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.4.9",
                  "product_id": "T026073-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4.9"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.3.12",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform \u003c7.3.12",
                  "product_id": "T041369"
                }
              },
              {
                "category": "product_version",
                "name": "7.3.12",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.3.12",
                  "product_id": "T041369-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.3.12"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.1.9",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform \u003c7.1.9",
                  "product_id": "T041370"
                }
              },
              {
                "category": "product_version",
                "name": "7.1.9",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.1.9",
                  "product_id": "T041370-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.1.9"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.3.13",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform \u003c7.3.13",
                  "product_id": "T043288"
                }
              },
              {
                "category": "product_version",
                "name": "7.3.13",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.3.13",
                  "product_id": "T043288-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.3.13"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "container platform 4.0.51",
                "product": {
                  "name": "Red Hat OpenShift container platform 4.0.51",
                  "product_id": "T026183",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_4.0.51"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-9251",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2015-9251"
    },
    {
      "cve": "CVE-2016-10735",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2016-10735"
    },
    {
      "cve": "CVE-2017-18214",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2017-18214"
    },
    {
      "cve": "CVE-2018-14040",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2018-14040"
    },
    {
      "cve": "CVE-2018-14041",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2018-14041"
    },
    {
      "cve": "CVE-2018-14042",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2018-14042"
    },
    {
      "cve": "CVE-2019-11358",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2019-11358"
    },
    {
      "cve": "CVE-2019-8331",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2019-8331"
    },
    {
      "cve": "CVE-2020-11022",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2020-11022"
    },
    {
      "cve": "CVE-2020-11023",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2020-11023"
    },
    {
      "cve": "CVE-2022-3143",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-3143"
    },
    {
      "cve": "CVE-2022-40149",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-40149"
    },
    {
      "cve": "CVE-2022-40150",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-40150"
    },
    {
      "cve": "CVE-2022-40152",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-45047",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-45047"
    },
    {
      "cve": "CVE-2022-45693",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-45693"
    },
    {
      "cve": "CVE-2022-46364",
      "product_status": {
        "known_affected": [
          "T026183",
          "T026073",
          "T041370",
          "67646",
          "T001663",
          "T027764",
          "T041369",
          "T030195",
          "T017562",
          "T043288"
        ]
      },
      "release_date": "2023-01-31T23:00:00.000+00:00",
      "title": "CVE-2022-46364"
    }
  ]
}

WID-SEC-W-2023-1022

Vulnerability from csaf_certbund - Published: 2023-04-18 22:00 - Updated: 2023-04-18 22:00

Summary

Oracle Communications Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-1370

In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2023-0662

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-46908

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-42004

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-41966

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-39271

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-36760

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-3171

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-31123

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-31081

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2022-1471

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2021-41183

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2020-7009

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2020-35168

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

CVE-2019-11287

Affected products

Known affected 5 products

Product	Identifier	Version
Oracle Communications Applications 7.4.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.2`	—
Oracle Communications Applications 6.0.1.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1.0.0`	—
Oracle Communications Applications 7.5.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.5.0`	—
Oracle Communications Applications 7.4.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.0`	—
Oracle Communications Applications 7.4.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:7.4.1`	—

Last affected 6 products

Product	Identifier	Version
Oracle Communications Applications <= 6.0.1 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.1`	—
Oracle Communications Applications <= 5.5.9 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.9`	—
Oracle Communications Applications <= 12.0.6 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6`	—
Oracle Communications Applications <= 12.0.6.0.0 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:12.0.6.0.0`	—
Oracle Communications Applications <= 5.5.10 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:5.5.10`	—
Oracle Communications Applications <= 6.0.2 Oracle / Communications Applications	`cpe:/a:oracle:communications_applications:6.0.2`	—

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2023…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Communications Applications umfasst eine Sammlung von Werkzeugen zur Verwaltung von Messaging-, Kommunikationsdiensten und -ressourcen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Communications Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1022 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1022.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1022 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1022"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2023 - Appendix Oracle Communications Applications vom 2023-04-18",
        "url": "https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixCAGBU"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Communications Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-04-18T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:49:25.156+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1022",
      "initial_release_date": "2023-04-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-04-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Communications Applications 7.4.0",
                "product": {
                  "name": "Oracle Communications Applications 7.4.0",
                  "product_id": "T018938",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications 7.4.1",
                "product": {
                  "name": "Oracle Communications Applications 7.4.1",
                  "product_id": "T018939",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications 7.4.2",
                "product": {
                  "name": "Oracle Communications Applications 7.4.2",
                  "product_id": "T018940",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.4.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications 6.0.1.0.0",
                "product": {
                  "name": "Oracle Communications Applications 6.0.1.0.0",
                  "product_id": "T021634",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:6.0.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications 7.5.0",
                "product": {
                  "name": "Oracle Communications Applications 7.5.0",
                  "product_id": "T021639",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:7.5.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 5.5.9",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 5.5.9",
                  "product_id": "T025857",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:5.5.9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 6.0.1",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 6.0.1",
                  "product_id": "T025858",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:6.0.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 5.5.10",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 5.5.10",
                  "product_id": "T027322",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:5.5.10"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 6.0.2",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 6.0.2",
                  "product_id": "T027323",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:6.0.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 12.0.6",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 12.0.6",
                  "product_id": "T027324",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:12.0.6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Communications Applications \u003c= 12.0.6.0.0",
                "product": {
                  "name": "Oracle Communications Applications \u003c= 12.0.6.0.0",
                  "product_id": "T027325",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:communications_applications:12.0.6.0.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Communications Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-1370",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2023-0662",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-0662"
    },
    {
      "cve": "CVE-2022-46908",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-46908"
    },
    {
      "cve": "CVE-2022-42004",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-41966",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-41966"
    },
    {
      "cve": "CVE-2022-39271",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-39271"
    },
    {
      "cve": "CVE-2022-36760",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-36760"
    },
    {
      "cve": "CVE-2022-3171",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-31123",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-31123"
    },
    {
      "cve": "CVE-2022-31081",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-31081"
    },
    {
      "cve": "CVE-2022-1471",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2021-41183",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-41183"
    },
    {
      "cve": "CVE-2020-7009",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-7009"
    },
    {
      "cve": "CVE-2020-35168",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-35168"
    },
    {
      "cve": "CVE-2019-11287",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Communications Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T018940",
          "T021634",
          "T021639",
          "T018938",
          "T018939"
        ],
        "last_affected": [
          "T025858",
          "T025857",
          "T027324",
          "T027325",
          "T027322",
          "T027323"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2019-11287"
    }
  ]
}

WID-SEC-W-2023-1142

Vulnerability from csaf_certbund - Published: 2023-05-03 22:00 - Updated: 2025-06-30 22:00

Summary

Red Hat Integration Camel for Spring Boot: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Integration Camel for Spring Boot ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.

Betroffene Betriebssysteme: - Linux

CVE-2021-37533

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-25857

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-31777

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-33681

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-37865

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-37866

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38398

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38648

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38749

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38750

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38751

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-38752

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-39368

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-40146

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-40150

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-40151

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-40152

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-40156

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41704

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41852

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41853

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41854

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41881

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-41966

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-42003

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-42004

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-42890

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2022-4492

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-1370

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-1436

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-20860

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-20861

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-20863

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-22602

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

CVE-2023-24998

Affected products

Known affected 9 products

Product	Identifier	Version
Red Hat OpenShift Application Runtimes Red Hat / OpenShift	`cpe:/a:redhat:openshift:application_runtimes`	Application Runtimes
Red Hat Enterprise Linux Apache Camel 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:apache_camel_1`	Apache Camel 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux Integration Camel for Spring Boot <3.20.1 Red Hat / Enterprise Linux		Integration Camel for Spring Boot <3.20.1
Red Hat OpenShift Container Platform <4.10.62 Red Hat / OpenShift		Container Platform <4.10.62
Dell NetWorker Dell	`cpe:/a:dell:networker:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat Integration Red Hat / Integration	`cpe:/a:redhat:integration:-`	—
Red Hat Integration Camel Extensions for Quarkus 1 Red Hat / Integration	`cpe:/a:redhat:integration:camel_extensions_for_quarkus_1`	Camel Extensions for Quarkus 1

References

31 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2023:2100	external
https://access.redhat.com/errata/RHSA-2023:3179	external
https://access.redhat.com/errata/RHSA-2023:3193	external
https://access.redhat.com/errata/RHSA-2023:3622	external
https://access.redhat.com/errata/RHSA-2023:3667	external
https://access.redhat.com/errata/RHSA-2023:3626	external
https://access.redhat.com/errata/RHSA-2023:3625	external
https://access.redhat.com/errata/RHSA-2023:3906	external
https://access.redhat.com/errata/RHSA-2023:3954	external
https://alas.aws.amazon.com/AL2/ALAS-2023-2165.html	external
https://access.redhat.com/errata/RHSA-2023:4506	external
https://access.redhat.com/errata/RHSA-2023:4507	external
https://access.redhat.com/errata/RHSA-2023:4505	external
https://access.redhat.com/errata/RHSA-2023:4509	external
https://access.redhat.com/errata/RHSA-2023:4612	external
https://access.redhat.com/errata/RHSA-2023:4919	external
https://access.redhat.com/errata/RHSA-2023:4921	external
https://access.redhat.com/errata/RHSA-2023:4924	external
https://access.redhat.com/errata/RHSA-2023:4918	external
https://access.redhat.com/errata/RHSA-2023:4920	external
https://access.redhat.com/errata/RHSA-2023:7670	external
https://www.dell.com/support/kbdoc/000220649/dsa-2023-=	external
https://www.dell.com/support/kbdoc/000220669/dsa-2023-=	external
https://alas.aws.amazon.com/ALAS-2024-1910.html	external
https://access.redhat.com/errata/RHSA-2024:1027	external
https://access.redhat.com/errata/RHSA-2025:3541	external
https://access.redhat.com/errata/RHSA-2025:3543	external
https://access.redhat.com/errata/RHSA-2025:8761	external
https://access.redhat.com/errata/RHSA-2025:9922	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Integration Camel for Spring Boot ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1142 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1142.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1142 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1142"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory vom 2023-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2023:2100"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3179 vom 2023-05-17",
        "url": "https://access.redhat.com/errata/RHSA-2023:3179"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3193 vom 2023-05-17",
        "url": "https://access.redhat.com/errata/RHSA-2023:3193"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3622 vom 2023-06-15",
        "url": "https://access.redhat.com/errata/RHSA-2023:3622"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3667 vom 2023-06-19",
        "url": "https://access.redhat.com/errata/RHSA-2023:3667"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3626 vom 2023-06-23",
        "url": "https://access.redhat.com/errata/RHSA-2023:3626"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3625 vom 2023-06-23",
        "url": "https://access.redhat.com/errata/RHSA-2023:3625"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3906 vom 2023-06-28",
        "url": "https://access.redhat.com/errata/RHSA-2023:3906"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3954 vom 2023-06-29",
        "url": "https://access.redhat.com/errata/RHSA-2023:3954"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2023-2165 vom 2023-07-26",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2165.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4506 vom 2023-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:4506"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4507 vom 2023-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:4507"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4505 vom 2023-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:4505"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4509 vom 2023-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:4509"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4612 vom 2023-08-16",
        "url": "https://access.redhat.com/errata/RHSA-2023:4612"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4919 vom 2023-08-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:4919"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4921 vom 2023-08-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:4921"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4924 vom 2023-08-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:4924"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4918 vom 2023-08-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:4918"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4920 vom 2023-08-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:4920"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7670 vom 2023-12-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:7670"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-300 vom 2023-12-22",
        "url": "https://www.dell.com/support/kbdoc/000220649/dsa-2023-="
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-409 vom 2023-12-23",
        "url": "https://www.dell.com/support/kbdoc/000220669/dsa-2023-="
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2024-1910 vom 2024-01-23",
        "url": "https://alas.aws.amazon.com/ALAS-2024-1910.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1027 vom 2024-02-28",
        "url": "https://access.redhat.com/errata/RHSA-2024:1027"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:3541 vom 2025-04-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:3541"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:3543 vom 2025-04-02",
        "url": "https://access.redhat.com/errata/RHSA-2025:3543"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:8761 vom 2025-06-10",
        "url": "https://access.redhat.com/errata/RHSA-2025:8761"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:9922 vom 2025-06-30",
        "url": "https://access.redhat.com/errata/RHSA-2025:9922"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Integration Camel for Spring Boot: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-06-30T22:00:00.000+00:00",
      "generator": {
        "date": "2025-07-01T15:24:00.059+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2023-1142",
      "initial_release_date": "2023-05-03T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-05-03T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-05-18T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-15T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-19T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-25T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-28T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-29T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-25T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-08-07T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-16T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-31T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-12-06T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-12-21T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2023-12-26T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-01-22T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2024-02-28T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-04-02T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-06-09T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-06-30T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "19"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell NetWorker",
            "product": {
              "name": "Dell NetWorker",
              "product_id": "T024663",
              "product_identification_helper": {
                "cpe": "cpe:/a:dell:networker:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Integration Camel for Spring Boot \u003c3.20.1",
                "product": {
                  "name": "Red Hat Enterprise Linux Integration Camel for Spring Boot \u003c3.20.1",
                  "product_id": "T027614"
                }
              },
              {
                "category": "product_version",
                "name": "Integration Camel for Spring Boot 3.20.1",
                "product": {
                  "name": "Red Hat Enterprise Linux Integration Camel for Spring Boot 3.20.1",
                  "product_id": "T027614-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:integration_camel_for_spring_boot__3.20.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Apache Camel 1",
                "product": {
                  "name": "Red Hat Enterprise Linux Apache Camel 1",
                  "product_id": "T044468",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:apache_camel_1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Camel Extensions for Quarkus 1",
                "product": {
                  "name": "Red Hat Integration Camel Extensions for Quarkus 1",
                  "product_id": "T026453",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:integration:camel_extensions_for_quarkus_1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Integration",
                "product": {
                  "name": "Red Hat Integration",
                  "product_id": "T033960",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:integration:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Integration"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.10.62",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.10.62",
                  "product_id": "T028308"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.10.62",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.10.62",
                  "product_id": "T028308-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.10.62"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Application Runtimes",
                "product": {
                  "name": "Red Hat OpenShift Application Runtimes",
                  "product_id": "T029341",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:application_runtimes"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-37533",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2022-25857",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-25857"
    },
    {
      "cve": "CVE-2022-31777",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-31777"
    },
    {
      "cve": "CVE-2022-33681",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-33681"
    },
    {
      "cve": "CVE-2022-37865",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-37865"
    },
    {
      "cve": "CVE-2022-37866",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-37866"
    },
    {
      "cve": "CVE-2022-38398",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38398"
    },
    {
      "cve": "CVE-2022-38648",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38648"
    },
    {
      "cve": "CVE-2022-38749",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38749"
    },
    {
      "cve": "CVE-2022-38750",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38750"
    },
    {
      "cve": "CVE-2022-38751",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38751"
    },
    {
      "cve": "CVE-2022-38752",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38752"
    },
    {
      "cve": "CVE-2022-39368",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-39368"
    },
    {
      "cve": "CVE-2022-40146",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-40146"
    },
    {
      "cve": "CVE-2022-40150",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-40150"
    },
    {
      "cve": "CVE-2022-40151",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-40151"
    },
    {
      "cve": "CVE-2022-40152",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-40156",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-40156"
    },
    {
      "cve": "CVE-2022-41704",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41704"
    },
    {
      "cve": "CVE-2022-41852",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41852"
    },
    {
      "cve": "CVE-2022-41853",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41853"
    },
    {
      "cve": "CVE-2022-41854",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41854"
    },
    {
      "cve": "CVE-2022-41881",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41881"
    },
    {
      "cve": "CVE-2022-41966",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41966"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42890",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-4492",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-4492"
    },
    {
      "cve": "CVE-2023-1370",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2023-1436",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-1436"
    },
    {
      "cve": "CVE-2023-20860",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-20860"
    },
    {
      "cve": "CVE-2023-20861",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-20861"
    },
    {
      "cve": "CVE-2023-20863",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-20863"
    },
    {
      "cve": "CVE-2023-22602",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-22602"
    },
    {
      "cve": "CVE-2023-24998",
      "product_status": {
        "known_affected": [
          "T029341",
          "T044468",
          "67646",
          "T027614",
          "T028308",
          "T024663",
          "398363",
          "T033960",
          "T026453"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    }
  ]
}

WID-SEC-W-2023-1143

Vulnerability from csaf_certbund - Published: 2023-05-03 22:00 - Updated: 2025-05-18 22:00

Summary

Red Hat Satellite: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Red Hat Satellite dient als zentrale Stelle für das Management, die Verteilung von Updates in Netzwerken mit Red Hat Enterprise Linux Systemen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Satellite ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, einen Cross-Site-Scripting-Angriff durchzuführen oder einen Denial of Service Zustand herbeizuführen.

Betroffene Betriebssysteme: - Linux

CVE-2022-1471

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-22577

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23514

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23515

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23516

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23517

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23518

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23519

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-23520

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-25857

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-27777

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-31163

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-32224

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-33980

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-38749

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-38750

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-38751

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-38752

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-41323

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-41946

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-42003

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-42004

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2022-42889

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2023-23969

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

CVE-2023-24580

Affected products

Known affected 4 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Satellite <6.13 Red Hat / Satellite		<6.13
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—

References

10 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2023:2097	external
https://lists.debian.org/debian-lts-announce/2023…	external
https://lists.debian.org/debian-lts-announce/2023…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://lists.debian.org/debian-lts-announce/2024…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.opensuse.org/archives/list/security…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Satellite dient als zentrale Stelle f\u00fcr das Management, die Verteilung von Updates in Netzwerken mit Red Hat Enterprise Linux Systemen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Satellite ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Informationen offenzulegen, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1143 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1143.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1143 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1143"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2097 vom 2023-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2023:2097"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3566 vom 2023-09-13",
        "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00012.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3565 vom 2023-09-13",
        "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00011.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2023-1BBEA3700B vom 2023-11-23",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-1bbea3700b"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2023-91E69EA326 vom 2023-11-23",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-91e69ea326"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3901 vom 2024-09-28",
        "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00044.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15120-1 vom 2025-05-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4IMNBB7ILYWTPHGNZ6BMSJ6C3YZLGIWO/"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15125-1 vom 2025-05-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4QQONV4QKIWHRILZMO26H7FGDPO7KJAF/"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Satellite: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-05-18T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-19T08:28:01.161+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2023-1143",
      "initial_release_date": "2023-05-03T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-05-03T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-09-13T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-11-22T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2023-11-23T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-09-29T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-05-18T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von openSUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c6.13",
                "product": {
                  "name": "Red Hat Satellite \u003c6.13",
                  "product_id": "T027613"
                }
              },
              {
                "category": "product_version",
                "name": "6.13",
                "product": {
                  "name": "Red Hat Satellite 6.13",
                  "product_id": "T027613-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite:6.13"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Satellite"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-1471",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-1471"
    },
    {
      "cve": "CVE-2022-22577",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-22577"
    },
    {
      "cve": "CVE-2022-23514",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23514"
    },
    {
      "cve": "CVE-2022-23515",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23515"
    },
    {
      "cve": "CVE-2022-23516",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23516"
    },
    {
      "cve": "CVE-2022-23517",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23517"
    },
    {
      "cve": "CVE-2022-23518",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23518"
    },
    {
      "cve": "CVE-2022-23519",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23519"
    },
    {
      "cve": "CVE-2022-23520",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-23520"
    },
    {
      "cve": "CVE-2022-25857",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-25857"
    },
    {
      "cve": "CVE-2022-27777",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-27777"
    },
    {
      "cve": "CVE-2022-31163",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-31163"
    },
    {
      "cve": "CVE-2022-32224",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-32224"
    },
    {
      "cve": "CVE-2022-33980",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-33980"
    },
    {
      "cve": "CVE-2022-38749",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38749"
    },
    {
      "cve": "CVE-2022-38750",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38750"
    },
    {
      "cve": "CVE-2022-38751",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38751"
    },
    {
      "cve": "CVE-2022-38752",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-38752"
    },
    {
      "cve": "CVE-2022-41323",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41323"
    },
    {
      "cve": "CVE-2022-41946",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-41946"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42889",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2022-42889"
    },
    {
      "cve": "CVE-2023-23969",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-23969"
    },
    {
      "cve": "CVE-2023-24580",
      "product_status": {
        "known_affected": [
          "2951",
          "T027843",
          "T027613",
          "74185"
        ]
      },
      "release_date": "2023-05-03T22:00:00.000+00:00",
      "title": "CVE-2023-24580"
    }
  ]
}

WID-SEC-W-2023-1350

Vulnerability from csaf_certbund - Published: 2023-06-01 22:00 - Updated: 2025-11-18 23:00

Summary

Splunk Splunk Enterprise: Mehrere Schwachstellen in Komponenten von Drittanbietern

Severity

Mittel

Notes

Produktbeschreibung: Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise in diversen Komponenten von Drittanbietern ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2017-16042

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2018-25032

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-10744

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-10746

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-20149

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-13822

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-15138

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-28469

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7662

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7753

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7774

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8116

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8169

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8177

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8203

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8231

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8284

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8285

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8286

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-20095

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22876

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22890

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22897

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22898

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22901

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22922

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22923

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22924

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22925

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22926

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22945

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22946

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22947

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23343

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23368

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23382

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-27292

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-29060

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-31566

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33502

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33503

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33587

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3520

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-36976

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3803

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-43565

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1705

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1962

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-22576

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23491

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23772

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23773

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23806

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24675

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24921

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24999

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-25858

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27191

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27664

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27774

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27775

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27776

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27778

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27779

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27780

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27781

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27782

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28131

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28327

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2879

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2880

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29526

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29804

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30115

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30580

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30629

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30630

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30631

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30632

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30633

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30634

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30635

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-31129

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32148

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32189

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32205

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32206

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32207

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32208

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32221

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-33987

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3517

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35252

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35260

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35737

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-36227

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37434

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37599

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37601

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37603

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37616

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-38900

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40023

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40303

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40304

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41715

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41716

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41720

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-4200

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42004

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42915

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42916

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-4304

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43551

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43552

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43680

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-46175

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-0215

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-0286

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-1370

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23914

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23915

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23916

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27533

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27534

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27535

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27536

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27537

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27538

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://advisory.splunk.com/advisories/SVD-2023-0613	external
https://www.ibm.com/support/pages/node/7008449	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Splunk Enterprise erm\u00f6glicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise in diversen Komponenten von Drittanbietern ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1350 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1350.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1350 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1350"
      },
      {
        "category": "external",
        "summary": "Splunk Enterprise Security Advisory SVD-2023-0613 vom 2023-06-01",
        "url": "https://advisory.splunk.com/advisories/SVD-2023-0613"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7008449 vom 2023-06-29",
        "url": "https://www.ibm.com/support/pages/node/7008449"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0196-1 vom 2024-01-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017743.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0487-1 vom 2024-02-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017931.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0486-1 vom 2024-02-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017932.html"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Splunk Splunk Enterprise: Mehrere Schwachstellen in Komponenten von Drittanbietern",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:42:52.592+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2023-1350",
      "initial_release_date": "2023-06-01T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-06-01T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-06-29T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-01-23T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-02-15T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.1",
                "product": {
                  "name": "Atlassian Confluence \u003c10.1.1",
                  "product_id": "T048680"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.1",
                "product": {
                  "name": "Atlassian Confluence 10.1.1",
                  "product_id": "T048680-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.1.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Confluence \u003c10.0.2",
                  "product_id": "T048685"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Confluence 10.0.2",
                  "product_id": "T048685-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.7",
                "product": {
                  "name": "Atlassian Confluence \u003c9.2.7",
                  "product_id": "T048686"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.7",
                "product": {
                  "name": "Atlassian Confluence 9.2.7",
                  "product_id": "T048686-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:9.2.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.5.25",
                "product": {
                  "name": "Atlassian Confluence \u003c8.5.25",
                  "product_id": "T048687"
                }
              },
              {
                "category": "product_version",
                "name": "8.5.25",
                "product": {
                  "name": "Atlassian Confluence 8.5.25",
                  "product_id": "T048687-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.25"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM DB2",
            "product": {
              "name": "IBM DB2",
              "product_id": "5104",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:db2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.1.14",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c8.1.14",
                  "product_id": "T027935"
                }
              },
              {
                "category": "product_version",
                "name": "8.1.14",
                "product": {
                  "name": "Splunk Splunk Enterprise 8.1.14",
                  "product_id": "T027935-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:8.1.14"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.2.11",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c8.2.11",
                  "product_id": "T027936"
                }
              },
              {
                "category": "product_version",
                "name": "8.2.11",
                "product": {
                  "name": "Splunk Splunk Enterprise 8.2.11",
                  "product_id": "T027936-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:8.2.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.0.5",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.0.5",
                  "product_id": "T027937"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.5",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.0.5",
                  "product_id": "T027937-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.0.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Splunk Enterprise"
          }
        ],
        "category": "vendor",
        "name": "Splunk"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-16042",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2017-16042"
    },
    {
      "cve": "CVE-2018-25032",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2019-10744",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-10744"
    },
    {
      "cve": "CVE-2019-10746",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-10746"
    },
    {
      "cve": "CVE-2019-20149",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-20149"
    },
    {
      "cve": "CVE-2020-13822",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-13822"
    },
    {
      "cve": "CVE-2020-15138",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-15138"
    },
    {
      "cve": "CVE-2020-28469",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-28469"
    },
    {
      "cve": "CVE-2020-7662",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7662"
    },
    {
      "cve": "CVE-2020-7753",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7753"
    },
    {
      "cve": "CVE-2020-7774",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7774"
    },
    {
      "cve": "CVE-2020-8116",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8116"
    },
    {
      "cve": "CVE-2020-8169",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8169"
    },
    {
      "cve": "CVE-2020-8177",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8177"
    },
    {
      "cve": "CVE-2020-8203",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8203"
    },
    {
      "cve": "CVE-2020-8231",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8231"
    },
    {
      "cve": "CVE-2020-8284",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8284"
    },
    {
      "cve": "CVE-2020-8285",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8285"
    },
    {
      "cve": "CVE-2020-8286",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8286"
    },
    {
      "cve": "CVE-2021-20095",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-20095"
    },
    {
      "cve": "CVE-2021-22876",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22876"
    },
    {
      "cve": "CVE-2021-22890",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22890"
    },
    {
      "cve": "CVE-2021-22897",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22897"
    },
    {
      "cve": "CVE-2021-22898",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22898"
    },
    {
      "cve": "CVE-2021-22901",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22901"
    },
    {
      "cve": "CVE-2021-22922",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22922"
    },
    {
      "cve": "CVE-2021-22923",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22923"
    },
    {
      "cve": "CVE-2021-22924",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22924"
    },
    {
      "cve": "CVE-2021-22925",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22925"
    },
    {
      "cve": "CVE-2021-22926",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22926"
    },
    {
      "cve": "CVE-2021-22945",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22945"
    },
    {
      "cve": "CVE-2021-22946",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22946"
    },
    {
      "cve": "CVE-2021-22947",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22947"
    },
    {
      "cve": "CVE-2021-23343",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23343"
    },
    {
      "cve": "CVE-2021-23368",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23368"
    },
    {
      "cve": "CVE-2021-23382",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23382"
    },
    {
      "cve": "CVE-2021-27292",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-27292"
    },
    {
      "cve": "CVE-2021-29060",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-29060"
    },
    {
      "cve": "CVE-2021-31566",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-31566"
    },
    {
      "cve": "CVE-2021-33502",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33502"
    },
    {
      "cve": "CVE-2021-33503",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33503"
    },
    {
      "cve": "CVE-2021-33587",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33587"
    },
    {
      "cve": "CVE-2021-3520",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-3520"
    },
    {
      "cve": "CVE-2021-36976",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-36976"
    },
    {
      "cve": "CVE-2021-3803",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-3803"
    },
    {
      "cve": "CVE-2021-43565",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-43565"
    },
    {
      "cve": "CVE-2022-1705",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-1705"
    },
    {
      "cve": "CVE-2022-1962",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-1962"
    },
    {
      "cve": "CVE-2022-22576",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-22576"
    },
    {
      "cve": "CVE-2022-23491",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23491"
    },
    {
      "cve": "CVE-2022-23772",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-24675",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24675"
    },
    {
      "cve": "CVE-2022-24921",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24921"
    },
    {
      "cve": "CVE-2022-24999",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24999"
    },
    {
      "cve": "CVE-2022-25858",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-25858"
    },
    {
      "cve": "CVE-2022-27191",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27191"
    },
    {
      "cve": "CVE-2022-27664",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27664"
    },
    {
      "cve": "CVE-2022-27774",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27774"
    },
    {
      "cve": "CVE-2022-27775",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27775"
    },
    {
      "cve": "CVE-2022-27776",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27776"
    },
    {
      "cve": "CVE-2022-27778",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27778"
    },
    {
      "cve": "CVE-2022-27779",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27779"
    },
    {
      "cve": "CVE-2022-27780",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27780"
    },
    {
      "cve": "CVE-2022-27781",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27781"
    },
    {
      "cve": "CVE-2022-27782",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27782"
    },
    {
      "cve": "CVE-2022-28131",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-28131"
    },
    {
      "cve": "CVE-2022-28327",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-28327"
    },
    {
      "cve": "CVE-2022-2879",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-2879"
    },
    {
      "cve": "CVE-2022-2880",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-2880"
    },
    {
      "cve": "CVE-2022-29526",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-29526"
    },
    {
      "cve": "CVE-2022-29804",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-29804"
    },
    {
      "cve": "CVE-2022-30115",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30115"
    },
    {
      "cve": "CVE-2022-30580",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30580"
    },
    {
      "cve": "CVE-2022-30629",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30629"
    },
    {
      "cve": "CVE-2022-30630",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30630"
    },
    {
      "cve": "CVE-2022-30631",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30631"
    },
    {
      "cve": "CVE-2022-30632",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30632"
    },
    {
      "cve": "CVE-2022-30633",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30633"
    },
    {
      "cve": "CVE-2022-30634",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30634"
    },
    {
      "cve": "CVE-2022-30635",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30635"
    },
    {
      "cve": "CVE-2022-31129",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-31129"
    },
    {
      "cve": "CVE-2022-32148",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32148"
    },
    {
      "cve": "CVE-2022-32189",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32189"
    },
    {
      "cve": "CVE-2022-32205",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32205"
    },
    {
      "cve": "CVE-2022-32206",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32206"
    },
    {
      "cve": "CVE-2022-32207",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32207"
    },
    {
      "cve": "CVE-2022-32208",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32208"
    },
    {
      "cve": "CVE-2022-32221",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32221"
    },
    {
      "cve": "CVE-2022-33987",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-33987"
    },
    {
      "cve": "CVE-2022-3517",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-3517"
    },
    {
      "cve": "CVE-2022-35252",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35252"
    },
    {
      "cve": "CVE-2022-35260",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35260"
    },
    {
      "cve": "CVE-2022-35737",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35737"
    },
    {
      "cve": "CVE-2022-36227",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-36227"
    },
    {
      "cve": "CVE-2022-37434",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-37599",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37599"
    },
    {
      "cve": "CVE-2022-37601",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37601"
    },
    {
      "cve": "CVE-2022-37603",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37603"
    },
    {
      "cve": "CVE-2022-37616",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37616"
    },
    {
      "cve": "CVE-2022-38900",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-38900"
    },
    {
      "cve": "CVE-2022-40023",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40023"
    },
    {
      "cve": "CVE-2022-40303",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40303"
    },
    {
      "cve": "CVE-2022-40304",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-41715",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41715"
    },
    {
      "cve": "CVE-2022-41716",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41716"
    },
    {
      "cve": "CVE-2022-41720",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41720"
    },
    {
      "cve": "CVE-2022-4200",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-4200"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42915",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42915"
    },
    {
      "cve": "CVE-2022-42916",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42916"
    },
    {
      "cve": "CVE-2022-4304",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-4304"
    },
    {
      "cve": "CVE-2022-43551",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43551"
    },
    {
      "cve": "CVE-2022-43552",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43552"
    },
    {
      "cve": "CVE-2022-43680",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-46175",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-46175"
    },
    {
      "cve": "CVE-2023-0215",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-0215"
    },
    {
      "cve": "CVE-2023-0286",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-0286"
    },
    {
      "cve": "CVE-2023-1370",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2023-23914",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23914"
    },
    {
      "cve": "CVE-2023-23915",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23915"
    },
    {
      "cve": "CVE-2023-23916",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23916"
    },
    {
      "cve": "CVE-2023-27533",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27533"
    },
    {
      "cve": "CVE-2023-27534",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27534"
    },
    {
      "cve": "CVE-2023-27535",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27535"
    },
    {
      "cve": "CVE-2023-27536",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27536"
    },
    {
      "cve": "CVE-2023-27537",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27537"
    },
    {
      "cve": "CVE-2023-27538",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27538"
    }
  ]
}

WID-SEC-W-2023-1783

Vulnerability from csaf_certbund - Published: 2023-07-18 22:00 - Updated: 2023-07-18 22:00

Summary

Oracle Supply Chain: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Die Oracle Supply Chain ist eine Sammlung von Applikationen für verschiedene Zwecke.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Supply Chain ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-28708

In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2023-28439

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2023-24998

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2023-22039

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-45143

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-42890

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-42004

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-42003

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-37434

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-27404

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2022-1122

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

CVE-2021-37533

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain 9.3.6 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:9.3.6`	—
Oracle Supply Chain 21.0.2 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2`	—

Last affected 2 products

Product	Identifier	Version	Remediation
Oracle Supply Chain <= 6.2.1.8 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:6.2.1.8`	—
Oracle Supply Chain <= 21.0.2.7 Oracle / Supply Chain	`cpe:/a:oracle:supply_chain:21.0.2.7`	—

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2023…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Die Oracle Supply Chain ist eine Sammlung von Applikationen f\u00fcr verschiedene Zwecke.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Supply Chain ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1783 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1783.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1783 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1783"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2023 - Appendix Oracle Supply Chain vom 2023-07-18",
        "url": "https://www.oracle.com/security-alerts/cpujul2023.html#AppendixSCP"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Supply Chain: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-07-18T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:55:44.627+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1783",
      "initial_release_date": "2023-07-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-07-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Supply Chain 9.3.6",
                "product": {
                  "name": "Oracle Supply Chain 9.3.6",
                  "product_id": "T019052",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:supply_chain:9.3.6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Supply Chain 21.0.2",
                "product": {
                  "name": "Oracle Supply Chain 21.0.2",
                  "product_id": "T020726",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:supply_chain:21.0.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Supply Chain \u003c= 6.2.1.8",
                "product": {
                  "name": "Oracle Supply Chain \u003c= 6.2.1.8",
                  "product_id": "T028729",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:supply_chain:6.2.1.8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Supply Chain \u003c= 21.0.2.7",
                "product": {
                  "name": "Oracle Supply Chain \u003c= 21.0.2.7",
                  "product_id": "T028730",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:supply_chain:21.0.2.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Supply Chain"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-28708",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-28708"
    },
    {
      "cve": "CVE-2023-28439",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-28439"
    },
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-22039",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-22039"
    },
    {
      "cve": "CVE-2022-45143",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-45143"
    },
    {
      "cve": "CVE-2022-42890",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-42004",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-37434",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-27404",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-27404"
    },
    {
      "cve": "CVE-2022-1122",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-1122"
    },
    {
      "cve": "CVE-2021-37533",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Supply Chain existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T019052",
          "T020726"
        ],
        "last_affected": [
          "T028729",
          "T028730"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    }
  ]
}

WID-SEC-W-2023-2229

Vulnerability from csaf_certbund - Published: 2023-08-30 22:00 - Updated: 2025-11-18 23:00

Summary

Splunk Splunk Enterprise: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.

Angriff: Ein entfernter, authentifizierter Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um beliebigen Code auszuführen, einen 'Denial of Service'-Zustand zu verursachen, seine Privilegien zu erweitern und weitere, nicht spezifizierte Auswirkungen zu verursachen.

Betroffene Betriebssysteme: - Linux - MacOS X - Windows

CVE-2013-7489

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2018-10237

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2018-20225

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-20454

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-20838

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-14155

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-28469

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-28851

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-29652

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8169

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8177

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8231

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8284

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8285

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8286

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8908

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-20066

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22569

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22876

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22890

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22897

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22898

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22901

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22922

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22923

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22924

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22925

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22926

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22945

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22946

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22947

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23343

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23382

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-27918

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-27919

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-29060

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-29425

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-29923

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-31525

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-31566

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33194

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33195

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33196

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33197

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33198

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-34558

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3520

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3572

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-36221

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-36976

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3803

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-38297

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-38561

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-39293

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-41182

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-41183

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-41184

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-41771

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-41772

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-43565

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-44716

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-44717

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1705

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1941

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1962

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-22576

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2309

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23491

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23772

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23773

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23806

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24675

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24921

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24999

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-25881

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27191

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27536

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27664

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27774

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27775

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27776

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27778

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27779

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27780

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27781

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27782

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28131

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28327

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2879

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2880

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29526

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29804

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30115

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30580

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30629

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30630

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30631

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30632

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30633

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30634

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30635

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-31129

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3171

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32148

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32149

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32189

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32205

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32206

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32207

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32208

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32221

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-33987

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3509

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3510

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3517

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35252

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35260

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35737

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-36227

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37599

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37601

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37603

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-38900

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40023

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40897

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40899

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41715

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41716

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41720

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41722

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42003

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42004

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42915

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42916

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43551

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43552

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-46175

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23914

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23915

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23916

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-24539

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-24540

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27533

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27534

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27535

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27536

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27537

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27538

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-29400

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-29402

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-29403

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-29404

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-29405

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40592

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40593

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40594

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40595

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40596

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40597

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-40598

Affected products

Known affected 13 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.9 Splunk / Splunk Enterprise		<9.0.9
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
Splunk Splunk Enterprise Splunk / Splunk Enterprise	`cpe:/a:splunk:splunk:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <9.1.4 Splunk / Splunk Enterprise		<9.1.4
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Splunk Splunk Enterprise <8.2.12 Splunk / Splunk Enterprise		<8.2.12
Splunk Splunk Enterprise <9.2.1 Splunk / Splunk Enterprise		<9.2.1
Splunk Splunk Enterprise <9.0.6 Splunk / Splunk Enterprise		<9.0.6
Splunk Splunk Enterprise <9.1.1 Splunk / Splunk Enterprise		<9.1.1
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

References

16 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://advisory.splunk.com//advisories/SVD-2023-0801	external
https://advisory.splunk.com//advisories/SVD-2023-0802	external
https://advisory.splunk.com//advisories/SVD-2023-0803	external
https://advisory.splunk.com//advisories/SVD-2023-0804	external
https://advisory.splunk.com//advisories/SVD-2023-0805	external
https://advisory.splunk.com//advisories/SVD-2023-0806	external
https://advisory.splunk.com//advisories/SVD-2023-0807	external
https://advisory.splunk.com//advisories/SVD-2023-0808	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://linux.oracle.com/errata/ELSA-2024-2988.html	external
https://advisory.splunk.com/advisories/SVD-2024-0718	external
https://advisory.splunk.com//advisories/SVD-2024-0801	external
https://lists.opensuse.org/archives/list/security…	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Splunk Enterprise erm\u00f6glicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentifizierter Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um beliebigen Code auszuf\u00fchren, einen \u0027Denial of Service\u0027-Zustand zu verursachen, seine Privilegien zu erweitern und weitere, nicht spezifizierte Auswirkungen zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2229 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2229.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2229 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2229"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0801"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0802"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0803"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0804"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0805"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0806"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0807"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory vom 2023-08-30",
        "url": "https://advisory.splunk.com//advisories/SVD-2023-0808"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0196-1 vom 2024-01-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017743.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-2988 vom 2024-05-28",
        "url": "https://linux.oracle.com/errata/ELSA-2024-2988.html"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-0718 vom 2024-07-02",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-0718"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-0801 vom 2024-08-12",
        "url": "https://advisory.splunk.com//advisories/SVD-2024-0801"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:03545-1 vom 2025-10-13",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UB7MGNRMXC5LO5Y66FLOE354VVU5ULQK/"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Splunk Splunk Enterprise: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:42:41.445+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2023-2229",
      "initial_release_date": "2023-08-30T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-08-30T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-01-23T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-05-28T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-07-01T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Splunk-SVD aufgenommen"
        },
        {
          "date": "2024-08-12T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Splunk-SVD aufgenommen"
        },
        {
          "date": "2025-10-12T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "7"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.1",
                "product": {
                  "name": "Atlassian Confluence \u003c10.1.1",
                  "product_id": "T048680"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.1",
                "product": {
                  "name": "Atlassian Confluence 10.1.1",
                  "product_id": "T048680-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.1.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Confluence \u003c10.0.2",
                  "product_id": "T048685"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Confluence 10.0.2",
                  "product_id": "T048685-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.7",
                "product": {
                  "name": "Atlassian Confluence \u003c9.2.7",
                  "product_id": "T048686"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.7",
                "product": {
                  "name": "Atlassian Confluence 9.2.7",
                  "product_id": "T048686-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:9.2.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.5.25",
                "product": {
                  "name": "Atlassian Confluence \u003c8.5.25",
                  "product_id": "T048687"
                }
              },
              {
                "category": "product_version",
                "name": "8.5.25",
                "product": {
                  "name": "Atlassian Confluence 8.5.25",
                  "product_id": "T048687-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.25"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Splunk Splunk Enterprise",
                "product": {
                  "name": "Splunk Splunk Enterprise",
                  "product_id": "T008911",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.1",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.1.1",
                  "product_id": "T029634"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.1",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.1.1",
                  "product_id": "T029634-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.1.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.0.6",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.0.6",
                  "product_id": "T029635"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.6",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.0.6",
                  "product_id": "T029635-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.0.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.2.12",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c8.2.12",
                  "product_id": "T029636"
                }
              },
              {
                "category": "product_version",
                "name": "8.2.12",
                "product": {
                  "name": "Splunk Splunk Enterprise 8.2.12",
                  "product_id": "T029636-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:8.2.12"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.1",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.2.1",
                  "product_id": "T033705"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.1",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.2.1",
                  "product_id": "T033705-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.2.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.4",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.1.4",
                  "product_id": "T033718"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.4",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.1.4",
                  "product_id": "T033718-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.1.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.0.9",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.0.9",
                  "product_id": "T033720"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.9",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.0.9",
                  "product_id": "T033720-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.0.9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Splunk Enterprise"
          }
        ],
        "category": "vendor",
        "name": "Splunk"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7489",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2013-7489"
    },
    {
      "cve": "CVE-2018-10237",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2018-10237"
    },
    {
      "cve": "CVE-2018-20225",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2018-20225"
    },
    {
      "cve": "CVE-2019-20454",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2019-20454"
    },
    {
      "cve": "CVE-2019-20838",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2019-20838"
    },
    {
      "cve": "CVE-2020-14155",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-14155"
    },
    {
      "cve": "CVE-2020-28469",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-28469"
    },
    {
      "cve": "CVE-2020-28851",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-28851"
    },
    {
      "cve": "CVE-2020-29652",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-29652"
    },
    {
      "cve": "CVE-2020-8169",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8169"
    },
    {
      "cve": "CVE-2020-8177",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8177"
    },
    {
      "cve": "CVE-2020-8231",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8231"
    },
    {
      "cve": "CVE-2020-8284",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8284"
    },
    {
      "cve": "CVE-2020-8285",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8285"
    },
    {
      "cve": "CVE-2020-8286",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8286"
    },
    {
      "cve": "CVE-2020-8908",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2020-8908"
    },
    {
      "cve": "CVE-2021-20066",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-20066"
    },
    {
      "cve": "CVE-2021-22569",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22569"
    },
    {
      "cve": "CVE-2021-22876",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22876"
    },
    {
      "cve": "CVE-2021-22890",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22890"
    },
    {
      "cve": "CVE-2021-22897",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22897"
    },
    {
      "cve": "CVE-2021-22898",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22898"
    },
    {
      "cve": "CVE-2021-22901",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22901"
    },
    {
      "cve": "CVE-2021-22922",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22922"
    },
    {
      "cve": "CVE-2021-22923",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22923"
    },
    {
      "cve": "CVE-2021-22924",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22924"
    },
    {
      "cve": "CVE-2021-22925",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22925"
    },
    {
      "cve": "CVE-2021-22926",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22926"
    },
    {
      "cve": "CVE-2021-22945",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22945"
    },
    {
      "cve": "CVE-2021-22946",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22946"
    },
    {
      "cve": "CVE-2021-22947",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-22947"
    },
    {
      "cve": "CVE-2021-23343",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-23343"
    },
    {
      "cve": "CVE-2021-23382",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-23382"
    },
    {
      "cve": "CVE-2021-27918",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-27918"
    },
    {
      "cve": "CVE-2021-27919",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-27919"
    },
    {
      "cve": "CVE-2021-29060",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-29060"
    },
    {
      "cve": "CVE-2021-29425",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-29425"
    },
    {
      "cve": "CVE-2021-29923",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-29923"
    },
    {
      "cve": "CVE-2021-31525",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-31525"
    },
    {
      "cve": "CVE-2021-31566",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-31566"
    },
    {
      "cve": "CVE-2021-33194",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-33194"
    },
    {
      "cve": "CVE-2021-33195",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-33195"
    },
    {
      "cve": "CVE-2021-33196",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-33196"
    },
    {
      "cve": "CVE-2021-33197",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-33197"
    },
    {
      "cve": "CVE-2021-33198",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-33198"
    },
    {
      "cve": "CVE-2021-34558",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-34558"
    },
    {
      "cve": "CVE-2021-3520",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-3520"
    },
    {
      "cve": "CVE-2021-3572",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-3572"
    },
    {
      "cve": "CVE-2021-36221",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-36221"
    },
    {
      "cve": "CVE-2021-36976",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-36976"
    },
    {
      "cve": "CVE-2021-3803",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-3803"
    },
    {
      "cve": "CVE-2021-38297",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-38297"
    },
    {
      "cve": "CVE-2021-38561",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-38561"
    },
    {
      "cve": "CVE-2021-39293",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-39293"
    },
    {
      "cve": "CVE-2021-41182",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-41182"
    },
    {
      "cve": "CVE-2021-41183",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-41183"
    },
    {
      "cve": "CVE-2021-41184",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-41771",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-41771"
    },
    {
      "cve": "CVE-2021-41772",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-41772"
    },
    {
      "cve": "CVE-2021-43565",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-43565"
    },
    {
      "cve": "CVE-2021-44716",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-44716"
    },
    {
      "cve": "CVE-2021-44717",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2021-44717"
    },
    {
      "cve": "CVE-2022-1705",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-1705"
    },
    {
      "cve": "CVE-2022-1941",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-1941"
    },
    {
      "cve": "CVE-2022-1962",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-1962"
    },
    {
      "cve": "CVE-2022-22576",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-22576"
    },
    {
      "cve": "CVE-2022-2309",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-2309"
    },
    {
      "cve": "CVE-2022-23491",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-23491"
    },
    {
      "cve": "CVE-2022-23772",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-24675",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-24675"
    },
    {
      "cve": "CVE-2022-24921",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-24921"
    },
    {
      "cve": "CVE-2022-24999",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-24999"
    },
    {
      "cve": "CVE-2022-25881",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-25881"
    },
    {
      "cve": "CVE-2022-27191",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27191"
    },
    {
      "cve": "CVE-2022-27536",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27536"
    },
    {
      "cve": "CVE-2022-27664",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27664"
    },
    {
      "cve": "CVE-2022-27774",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27774"
    },
    {
      "cve": "CVE-2022-27775",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27775"
    },
    {
      "cve": "CVE-2022-27776",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27776"
    },
    {
      "cve": "CVE-2022-27778",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27778"
    },
    {
      "cve": "CVE-2022-27779",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27779"
    },
    {
      "cve": "CVE-2022-27780",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27780"
    },
    {
      "cve": "CVE-2022-27781",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27781"
    },
    {
      "cve": "CVE-2022-27782",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-27782"
    },
    {
      "cve": "CVE-2022-28131",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-28131"
    },
    {
      "cve": "CVE-2022-28327",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-28327"
    },
    {
      "cve": "CVE-2022-2879",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-2879"
    },
    {
      "cve": "CVE-2022-2880",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-2880"
    },
    {
      "cve": "CVE-2022-29526",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-29526"
    },
    {
      "cve": "CVE-2022-29804",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-29804"
    },
    {
      "cve": "CVE-2022-30115",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30115"
    },
    {
      "cve": "CVE-2022-30580",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30580"
    },
    {
      "cve": "CVE-2022-30629",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30629"
    },
    {
      "cve": "CVE-2022-30630",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30630"
    },
    {
      "cve": "CVE-2022-30631",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30631"
    },
    {
      "cve": "CVE-2022-30632",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30632"
    },
    {
      "cve": "CVE-2022-30633",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30633"
    },
    {
      "cve": "CVE-2022-30634",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30634"
    },
    {
      "cve": "CVE-2022-30635",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-30635"
    },
    {
      "cve": "CVE-2022-31129",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-31129"
    },
    {
      "cve": "CVE-2022-3171",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-32148",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32148"
    },
    {
      "cve": "CVE-2022-32149",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32149"
    },
    {
      "cve": "CVE-2022-32189",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32189"
    },
    {
      "cve": "CVE-2022-32205",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32205"
    },
    {
      "cve": "CVE-2022-32206",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32206"
    },
    {
      "cve": "CVE-2022-32207",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32207"
    },
    {
      "cve": "CVE-2022-32208",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32208"
    },
    {
      "cve": "CVE-2022-32221",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-32221"
    },
    {
      "cve": "CVE-2022-33987",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-33987"
    },
    {
      "cve": "CVE-2022-3509",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-3509"
    },
    {
      "cve": "CVE-2022-3510",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-3510"
    },
    {
      "cve": "CVE-2022-3517",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-3517"
    },
    {
      "cve": "CVE-2022-35252",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-35252"
    },
    {
      "cve": "CVE-2022-35260",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-35260"
    },
    {
      "cve": "CVE-2022-35737",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-35737"
    },
    {
      "cve": "CVE-2022-36227",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-36227"
    },
    {
      "cve": "CVE-2022-37599",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-37599"
    },
    {
      "cve": "CVE-2022-37601",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-37601"
    },
    {
      "cve": "CVE-2022-37603",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-37603"
    },
    {
      "cve": "CVE-2022-38900",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-38900"
    },
    {
      "cve": "CVE-2022-40023",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-40023"
    },
    {
      "cve": "CVE-2022-40897",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-40897"
    },
    {
      "cve": "CVE-2022-40899",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-40899"
    },
    {
      "cve": "CVE-2022-41715",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-41715"
    },
    {
      "cve": "CVE-2022-41716",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-41716"
    },
    {
      "cve": "CVE-2022-41720",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-41720"
    },
    {
      "cve": "CVE-2022-41722",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-41722"
    },
    {
      "cve": "CVE-2022-42003",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42915",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-42915"
    },
    {
      "cve": "CVE-2022-42916",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-42916"
    },
    {
      "cve": "CVE-2022-43551",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-43551"
    },
    {
      "cve": "CVE-2022-43552",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-43552"
    },
    {
      "cve": "CVE-2022-46175",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2022-46175"
    },
    {
      "cve": "CVE-2023-23914",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-23914"
    },
    {
      "cve": "CVE-2023-23915",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-23915"
    },
    {
      "cve": "CVE-2023-23916",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-23916"
    },
    {
      "cve": "CVE-2023-24539",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-24539"
    },
    {
      "cve": "CVE-2023-24540",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-24540"
    },
    {
      "cve": "CVE-2023-27533",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27533"
    },
    {
      "cve": "CVE-2023-27534",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27534"
    },
    {
      "cve": "CVE-2023-27535",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27535"
    },
    {
      "cve": "CVE-2023-27536",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27536"
    },
    {
      "cve": "CVE-2023-27537",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27537"
    },
    {
      "cve": "CVE-2023-27538",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-27538"
    },
    {
      "cve": "CVE-2023-29400",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-29400"
    },
    {
      "cve": "CVE-2023-29402",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-29402"
    },
    {
      "cve": "CVE-2023-29403",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-29403"
    },
    {
      "cve": "CVE-2023-29404",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-29404"
    },
    {
      "cve": "CVE-2023-29405",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-29405"
    },
    {
      "cve": "CVE-2023-40592",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40592"
    },
    {
      "cve": "CVE-2023-40593",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40593"
    },
    {
      "cve": "CVE-2023-40594",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40594"
    },
    {
      "cve": "CVE-2023-40595",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40595"
    },
    {
      "cve": "CVE-2023-40596",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40596"
    },
    {
      "cve": "CVE-2023-40597",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40597"
    },
    {
      "cve": "CVE-2023-40598",
      "product_status": {
        "known_affected": [
          "T033720",
          "T048680",
          "T008911",
          "T004914",
          "T002207",
          "T033718",
          "T048685",
          "T029636",
          "T033705",
          "T029635",
          "T029634",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-08-30T22:00:00.000+00:00",
      "title": "CVE-2023-40598"
    }
  ]
}

WID-SEC-W-2023-2674

Vulnerability from csaf_certbund - Published: 2023-10-17 22:00 - Updated: 2023-12-26 23:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-39022

In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-35887

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-35116

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-34462

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-2976

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-28708

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-28484

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-2650

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-24998

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22127

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22126

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22108

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22101

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22089

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22086

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22072

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22069

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22019

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-20863

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-1436

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45690

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45688

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-44729

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42920

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42004

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-37436

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-29599

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-29546

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-24839

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-23491

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-37714

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-37136

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36374

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-28165

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-13956

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2019-10086

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuoct2023…	external
https://www.dell.com/support/kbdoc/000220669/dsa-2023-=	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2674 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2674.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2674 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2674"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - October 2023 - Appendix Oracle Fusion Middleware vom 2023-10-17",
        "url": "https://www.oracle.com/security-alerts/cpuoct2023.html#AppendixFMW"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-409 vom 2023-12-23",
        "url": "https://www.dell.com/support/kbdoc/000220669/dsa-2023-="
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-12-26T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:59:59.153+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2674",
      "initial_release_date": "2023-10-17T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-10-17T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-12-26T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.3.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.3.0",
                  "product_id": "618028",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 8.5.6",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.6",
                  "product_id": "T024993",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-39022",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-39022"
    },
    {
      "cve": "CVE-2023-35887",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-35887"
    },
    {
      "cve": "CVE-2023-35116",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-35116"
    },
    {
      "cve": "CVE-2023-34462",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-34462"
    },
    {
      "cve": "CVE-2023-2976",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-2976"
    },
    {
      "cve": "CVE-2023-28708",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-28708"
    },
    {
      "cve": "CVE-2023-28484",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-28484"
    },
    {
      "cve": "CVE-2023-2650",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-2650"
    },
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-22127",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22127"
    },
    {
      "cve": "CVE-2023-22126",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22126"
    },
    {
      "cve": "CVE-2023-22108",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22108"
    },
    {
      "cve": "CVE-2023-22101",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22101"
    },
    {
      "cve": "CVE-2023-22089",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22089"
    },
    {
      "cve": "CVE-2023-22086",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22086"
    },
    {
      "cve": "CVE-2023-22072",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22072"
    },
    {
      "cve": "CVE-2023-22069",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22069"
    },
    {
      "cve": "CVE-2023-22019",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22019"
    },
    {
      "cve": "CVE-2023-20863",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-20863"
    },
    {
      "cve": "CVE-2023-1436",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-1436"
    },
    {
      "cve": "CVE-2022-45690",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-45690"
    },
    {
      "cve": "CVE-2022-45688",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-45688"
    },
    {
      "cve": "CVE-2022-44729",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-44729"
    },
    {
      "cve": "CVE-2022-42920",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-42920"
    },
    {
      "cve": "CVE-2022-42004",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-37436",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-37436"
    },
    {
      "cve": "CVE-2022-29599",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-29599"
    },
    {
      "cve": "CVE-2022-29546",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-29546"
    },
    {
      "cve": "CVE-2022-24839",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-24839"
    },
    {
      "cve": "CVE-2022-23491",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-23491"
    },
    {
      "cve": "CVE-2021-37714",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-37714"
    },
    {
      "cve": "CVE-2021-37136",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-37136"
    },
    {
      "cve": "CVE-2021-36374",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-36374"
    },
    {
      "cve": "CVE-2021-28165",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-28165"
    },
    {
      "cve": "CVE-2020-13956",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2020-13956"
    },
    {
      "cve": "CVE-2019-10086",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2019-10086"
    }
  ]
}

WID-SEC-W-2023-2700

Vulnerability from csaf_certbund - Published: 2023-10-17 22:00 - Updated: 2023-12-12 23:00

Summary

Atlassian Confluence: Mehrere Schwachstellen

Severity

Kritisch

Notes

Produktbeschreibung: Confluence ist eine kommerzielle Wiki-Software. Jira ist eine Webanwendung zur Softwareentwicklung. Bitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle. Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuführen oder einen Denial of Service Zustand herbeizuführen.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-28709

In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuführen oder einen Denial of Service Zustand herbeizuführen. Für die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich.

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2023-25194

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2023-22515

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2023-22514

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2023-1370

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-45688

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-45685

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-42004

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-42003

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-41906

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-40152

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-3509

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-3171

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2022-25647

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2021-46877

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2021-31684

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2021-22569

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2020-36518

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2020-13936

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

CVE-2019-13990

Affected products

Known affected 17 products

Product	Identifier	Version
Atlassian Bamboo < 9.3.5 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.3.5`	—
Atlassian Confluence < 8.4.5 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.4.5`	—
Atlassian Confluence < 8.6.2 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.6.2`	—
Atlassian Bitbucket < 7.21.18 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:7.21.18`	—
Atlassian Confluence < 8.5.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.5.4`	—
Atlassian Bitbucket < 8.9.7 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.9.7`	—
Atlassian Confluence < 8.7.1 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.7.1`	—
Atlassian Bamboo < 9.2.7 Atlassian / Bamboo	`cpe:/a:atlassian:bamboo:9.2.7`	—
Atlassian Confluence < 8.3.4 Atlassian / Confluence	`cpe:/a:atlassian:confluence:8.3.4`	—
Atlassian Bitbucket < 8.12.4 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.12.4`	—
Atlassian Bitbucket < 8.11.6 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.11.6`	—
Atlassian Jira Software Service Management < 4.20.28 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__4.20.28`	—
Atlassian Bitbucket < 8.14.2 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.14.2`	—
Atlassian Jira Software < 9.4.13 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:9.4.13`	—
Atlassian Bitbucket < 8.13.3 Atlassian / Bitbucket	`cpe:/a:atlassian:bitbucket:8.13.3`	—
Atlassian Confluence < 7.19.17 Atlassian / Confluence	`cpe:/a:atlassian:confluence:7.19.17`	—
Atlassian Jira Software Service Management < 5.4.12 Atlassian / Jira Software	`cpe:/a:atlassian:jira_software:service_management__5.4.12`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://confluence.atlassian.com/security/securit…	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Confluence ist eine kommerzielle Wiki-Software.\r\nJira ist eine Webanwendung zur Softwareentwicklung.\r\nBitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle.\r\nBamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2700 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2700.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2700 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2700"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Update vom 2023-10-17",
        "url": "https://confluence.atlassian.com/security/security-bulletin-october-17-2023-1299929380.html"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin December 12 2023 vom 2023-12-12",
        "url": "https://confluence.atlassian.com/security/security-bulletin-december-12-2023-1319249520.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Atlassian Confluence: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-12-12T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:00:13.228+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2700",
      "initial_release_date": "2023-10-17T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-10-17T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-12-12T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Atlassian Bamboo \u003c 9.2.7",
                "product": {
                  "name": "Atlassian Bamboo \u003c 9.2.7",
                  "product_id": "1529586",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:9.2.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bamboo \u003c 9.2.5 Data Center and Server",
                "product": {
                  "name": "Atlassian Bamboo \u003c 9.2.5 Data Center and Server",
                  "product_id": "T030667",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:9.2.5_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bamboo \u003c 9.3.1 Data Center and Server",
                "product": {
                  "name": "Atlassian Bamboo \u003c 9.3.1 Data Center and Server",
                  "product_id": "T030668",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:9.3.1_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bamboo \u003c 9.3.3 Data Center and Server",
                "product": {
                  "name": "Atlassian Bamboo \u003c 9.3.3 Data Center and Server",
                  "product_id": "T030669",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:9.3.3_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bamboo \u003c 9.3.5",
                "product": {
                  "name": "Atlassian Bamboo \u003c 9.3.5",
                  "product_id": "T031324",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:9.3.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bamboo"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.13.1 Data Center and Server",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.13.1 Data Center and Server",
                  "product_id": "T030666",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.13.1_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 7.21.18",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 7.21.18",
                  "product_id": "T031325",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:7.21.18"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.9.7",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.9.7",
                  "product_id": "T031614",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.9.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.11.6",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.11.6",
                  "product_id": "T031615",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.11.6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.12.4",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.12.4",
                  "product_id": "T031616",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.12.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.13.3",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.13.3",
                  "product_id": "T031617",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.13.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Bitbucket \u003c 8.14.2",
                "product": {
                  "name": "Atlassian Bitbucket \u003c 8.14.2",
                  "product_id": "T031618",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.14.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.3.3 Server and Data Center",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.3.3 Server and Data Center",
                  "product_id": "T030660",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.3.3_server_and_data_center"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.5.2 Server and Data Center",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.5.2 Server and Data Center",
                  "product_id": "T030662",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.2_server_and_data_center"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.4.3 Server and Data Center",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.4.3 Server and Data Center",
                  "product_id": "T030663",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.4.3_server_and_data_center"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.3.4",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.3.4",
                  "product_id": "T030846",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.3.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 7.19.17",
                "product": {
                  "name": "Atlassian Confluence \u003c 7.19.17",
                  "product_id": "T031609",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:7.19.17"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.4.5",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.4.5",
                  "product_id": "T031610",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.4.5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.5.4",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.5.4",
                  "product_id": "T031611",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.6.2",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.6.2",
                  "product_id": "T031612",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Confluence \u003c 8.7.1",
                "product": {
                  "name": "Atlassian Confluence \u003c 8.7.1",
                  "product_id": "T031613",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.7.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Atlassian Jira Software \u003c 4.20.27 Service Management Data Center and Server",
                "product": {
                  "name": "Atlassian Jira Software \u003c 4.20.27 Service Management Data Center and Server",
                  "product_id": "T030664",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira_software:4.20.27_service_management_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Jira Software \u003c 5.4.11 Service Management Data Center and Server",
                "product": {
                  "name": "Atlassian Jira Software \u003c 5.4.11 Service Management Data Center and Server",
                  "product_id": "T030665",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira_software:5.4.11_service_management_data_center_and_server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Jira Software \u003c 9.4.13",
                "product": {
                  "name": "Atlassian Jira Software \u003c 9.4.13",
                  "product_id": "T031606",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira_software:9.4.13"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Jira Software Service Management \u003c 4.20.28",
                "product": {
                  "name": "Atlassian Jira Software Service Management \u003c 4.20.28",
                  "product_id": "T031607",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira_software:service_management__4.20.28"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Atlassian Jira Software Service Management \u003c 5.4.12",
                "product": {
                  "name": "Atlassian Jira Software Service Management \u003c 5.4.12",
                  "product_id": "T031608",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:jira_software:service_management__5.4.12"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Jira Software"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-28709",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-28709"
    },
    {
      "cve": "CVE-2023-25194",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-25194"
    },
    {
      "cve": "CVE-2023-22515",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22515"
    },
    {
      "cve": "CVE-2023-22514",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-22514"
    },
    {
      "cve": "CVE-2023-1370",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2022-45688",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-45688"
    },
    {
      "cve": "CVE-2022-45685",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-45685"
    },
    {
      "cve": "CVE-2022-42004",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-41906",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-41906"
    },
    {
      "cve": "CVE-2022-40152",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-3509",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-3509"
    },
    {
      "cve": "CVE-2022-3171",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-25647",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2022-25647"
    },
    {
      "cve": "CVE-2021-46877",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-46877"
    },
    {
      "cve": "CVE-2021-31684",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-31684"
    },
    {
      "cve": "CVE-2021-22569",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2021-22569"
    },
    {
      "cve": "CVE-2020-36518",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2020-36518"
    },
    {
      "cve": "CVE-2020-13936",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2020-13936"
    },
    {
      "cve": "CVE-2019-13990",
      "notes": [
        {
          "category": "description",
          "text": "In Atlassian Confluence, Atlassian Jira Software, Atlassian Bitbucket und Atlassian Bamboo existieren mehrere Schwachstellen. Diese Schwachstellen bestehen teilweise in Komponenten von Drittanbietern und sind nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Administratorrechte zu erlangen, Informationen offenzulegen, beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T031324",
          "T031610",
          "T031612",
          "T031325",
          "T031611",
          "T031614",
          "T031613",
          "1529586",
          "T030846",
          "T031616",
          "T031615",
          "T031607",
          "T031618",
          "T031606",
          "T031617",
          "T031609",
          "T031608"
        ]
      },
      "release_date": "2023-10-17T22:00:00.000+00:00",
      "title": "CVE-2019-13990"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-42004 (GCVE-0-2022-42004)

Tags

Sightings

Nomenclature