Vulnerability-Lookup

CVE-2022-43680 (GCVE-0-2022-43680)

Vulnerability from cvelistv5 – Published: 2022-10-24 00:00 – Updated: 2025-05-30 19:20

Summary

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

n/a
CWE-416 - Use After Free

Assigner

mitre

References

15 references

URL	Tags
https://github.com/libexpat/libexpat/pull/650
https://github.com/libexpat/libexpat/issues/649
https://github.com/libexpat/libexpat/pull/616
https://lists.debian.org/debian-lts-announce/2022…	mailing-list
https://www.debian.org/security/2022/dsa-5266	vendor-advisory
https://security.gentoo.org/glsa/202210-38	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://security.netapp.com/advisory/ntap-2022111…
http://www.openwall.com/lists/oss-security/2023/12/28/5	mailing-list
http://www.openwall.com/lists/oss-security/2024/01/03/5	mailing-list

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T13:40:06.144Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/libexpat/libexpat/pull/650"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/libexpat/libexpat/issues/649"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/libexpat/libexpat/pull/616"
          },
          {
            "name": "[debian-lts-announce] 20221028 [SECURITY] [DLA 3165-1] expat security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html"
          },
          {
            "name": "DSA-5266",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5266"
          },
          {
            "name": "GLSA-202210-38",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202210-38"
          },
          {
            "name": "FEDORA-2022-ae2559a8f4",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/"
          },
          {
            "name": "FEDORA-2022-3cf0e7ebc7",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/"
          },
          {
            "name": "FEDORA-2022-f3a939e960",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/"
          },
          {
            "name": "FEDORA-2022-5f1e2e9016",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/"
          },
          {
            "name": "FEDORA-2022-49db80f821",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/"
          },
          {
            "name": "FEDORA-2022-c43235716e",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20221118-0007/"
          },
          {
            "name": "[oss-security] 20231228 CVE-2022-43680: Apache OpenOffice: \"Use after free\" fixed in libexpat",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/12/28/5"
          },
          {
            "name": "[oss-security] 20240103 CVE-2022-43680: Apache OpenOffice: \"Use after free\" fixed in libexpat",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/01/03/5"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-43680",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-30T19:19:46.789242Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-30T19:20:52.533Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-03T12:06:22.913Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/libexpat/libexpat/pull/650"
        },
        {
          "url": "https://github.com/libexpat/libexpat/issues/649"
        },
        {
          "url": "https://github.com/libexpat/libexpat/pull/616"
        },
        {
          "name": "[debian-lts-announce] 20221028 [SECURITY] [DLA 3165-1] expat security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html"
        },
        {
          "name": "DSA-5266",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2022/dsa-5266"
        },
        {
          "name": "GLSA-202210-38",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202210-38"
        },
        {
          "name": "FEDORA-2022-ae2559a8f4",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/"
        },
        {
          "name": "FEDORA-2022-3cf0e7ebc7",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/"
        },
        {
          "name": "FEDORA-2022-f3a939e960",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/"
        },
        {
          "name": "FEDORA-2022-5f1e2e9016",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/"
        },
        {
          "name": "FEDORA-2022-49db80f821",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/"
        },
        {
          "name": "FEDORA-2022-c43235716e",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20221118-0007/"
        },
        {
          "name": "[oss-security] 20231228 CVE-2022-43680: Apache OpenOffice: \"Use after free\" fixed in libexpat",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2023/12/28/5"
        },
        {
          "name": "[oss-security] 20240103 CVE-2022-43680: Apache OpenOffice: \"Use after free\" fixed in libexpat",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2024/01/03/5"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2022-43680",
    "datePublished": "2022-10-24T00:00:00.000Z",
    "dateReserved": "2022-10-24T00:00:00.000Z",
    "dateUpdated": "2025-05-30T19:20:52.533Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-43680",
      "date": "2026-06-02",
      "epss": "0.00393",
      "percentile": "0.60514"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-43680\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2022-10-24T14:15:53.323\",\"lastModified\":\"2025-05-30T20:15:31.250\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.\"},{\"lang\":\"es\",\"value\":\"En libexpat versiones hasta 2.4.9, se presenta un uso de memoria previamente liberada causado por la destrucci\u00f3n excesiva de un DTD compartido en XML_ExternalEntityParserCreate en situaciones fuera de memoria\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.4.9\",\"matchCriteriaId\":\"262BCBEE-82AD-4ED4-A93E-9AE282BBE16C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6770B6C3-732E-4E22-BF1C-2D2FD610061C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F9C8C20-42EB-4AB5-BD97-212DEB070C43\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FFF7106-ED78-49BA-9EC5-B889E3685D53\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56409CEC-5A1E-4450-AA42-641E459CC2AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06F4839-D16A-4A61-9BB5-55B13F41E47F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0B4AD8A-F172-4558-AEC6-FF424BA2D912\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8497A4C9-8474-4A62-8331-3FE862ED4098\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"234DEFE0-5CE5-4B0A-96B8-5D227CB8ED31\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDDF61B7-EC5C-467C-B710-B89F502CD04F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*\",\"matchCriteriaId\":\"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:solidfire_\\\\\u0026_hci_management_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6D700C5-F67F-4FFB-BE69-D524592A3D2E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netapp:hci_compute_node_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F921BC85-568E-4B69-A3CD-CF75C76672F1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD7447BC-F315-4298-A822-549942FC118B\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/28/5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/01/03/5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/issues/649\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/pull/616\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/pull/650\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-38\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0007/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5266\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/12/28/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/01/03/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/issues/649\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/pull/616\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexpat/libexpat/pull/650\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-38\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5266\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/libexpat/libexpat/pull/650\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/libexpat/libexpat/issues/649\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/libexpat/libexpat/pull/616\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html\", \"name\": \"[debian-lts-announce] 20221028 [SECURITY] [DLA 3165-1] expat security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5266\", \"name\": \"DSA-5266\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202210-38\", \"name\": \"GLSA-202210-38\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/\", \"name\": \"FEDORA-2022-ae2559a8f4\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/\", \"name\": \"FEDORA-2022-3cf0e7ebc7\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/\", \"name\": \"FEDORA-2022-f3a939e960\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/\", \"name\": \"FEDORA-2022-5f1e2e9016\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/\", \"name\": \"FEDORA-2022-49db80f821\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/\", \"name\": \"FEDORA-2022-c43235716e\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20221118-0007/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/28/5\", \"name\": \"[oss-security] 20231228 CVE-2022-43680: Apache OpenOffice: \\\"Use after free\\\" fixed in libexpat\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/01/03/5\", \"name\": \"[oss-security] 20240103 CVE-2022-43680: Apache OpenOffice: \\\"Use after free\\\" fixed in libexpat\", \"tags\": [\"mailing-list\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T13:40:06.144Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-43680\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-30T19:19:46.789242Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416 Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-30T19:19:10.944Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://github.com/libexpat/libexpat/pull/650\"}, {\"url\": \"https://github.com/libexpat/libexpat/issues/649\"}, {\"url\": \"https://github.com/libexpat/libexpat/pull/616\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html\", \"name\": \"[debian-lts-announce] 20221028 [SECURITY] [DLA 3165-1] expat security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5266\", \"name\": \"DSA-5266\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202210-38\", \"name\": \"GLSA-202210-38\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/\", \"name\": \"FEDORA-2022-ae2559a8f4\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/\", \"name\": \"FEDORA-2022-3cf0e7ebc7\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/\", \"name\": \"FEDORA-2022-f3a939e960\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/\", \"name\": \"FEDORA-2022-5f1e2e9016\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/\", \"name\": \"FEDORA-2022-49db80f821\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/\", \"name\": \"FEDORA-2022-c43235716e\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20221118-0007/\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/12/28/5\", \"name\": \"[oss-security] 20231228 CVE-2022-43680: Apache OpenOffice: \\\"Use after free\\\" fixed in libexpat\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/01/03/5\", \"name\": \"[oss-security] 20240103 CVE-2022-43680: Apache OpenOffice: \\\"Use after free\\\" fixed in libexpat\", \"tags\": [\"mailing-list\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2024-01-03T12:06:22.913Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2022-43680\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-30T19:20:52.533Z\", \"dateReserved\": \"2022-10-24T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2022-10-24T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

VDE-2023-001

Vulnerability from csaf_phoenixcontactgmbhcokg - Published: 2023-02-14 07:50 - Updated: 2025-06-05 13:28

Summary

PHOENIX CONTACT: Multiple Vulnerabilities in PLCnext Firmware

Notes

Summary: A new LTS Firmware release fixes known vulnerabilities in used open-source libraries. In addition, the following improvements have been implemented: HMI - Hardening against DoS attacks. - Hardening against memory leak problems in case of network attacks. WBM - Umlauts in the password of the 'User Manager' were not handled correctly. The password rule for upper and lower case was not followed. This could lead to unintentionally weaker passwords.- Hardening of WBM against Cross-Site-Scripting. User Manager - In security notifications 'SecurityToken' was always displayed as '0000000' when creating or modifying users.- Hardening of Trust and Identity Stores.

Impact: Please consult the CVE entries listed above.

Mitigation: Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note: Measures to protect network-capable devices with Ethernet connection

Remediation: Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

CVE-2022-30065

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Mitigation Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note: Measures to protect network-capable devices with Ethernet connection

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-40674

libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-35252

When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings.

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-20 - Improper Input Validation

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-43680

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-42916

In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly (instead of using an insecure cleartext HTTP step) even when HTTP is provided in the URL. This mechanism could be bypassed if the host name in the given URL uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion, e.g., using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop of U+002E (.). The earliest affected version is 7.77.0 2021-05-26.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-319 - Cleartext Transmission of Sensitive Information

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1664

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction can lead to directory traversal situations on specially crafted orig.tar and debian.tar tarballs.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1304

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-29187

Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-427 - Uncontrolled Search Path Element

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-39260

Git is an open source, scalable, distributed revision control system. 'git shell' is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the command arguments into an array improperly uses an 'int' to represent the number of entries in the array, allowing a malicious actor to intentionally overflow the return value, leading to arbitrary heap writes. Because the resulting array is then passed to 'execv()', it is possible to leverage this attack to gain remote code execution on a victim machine. Note that a victim must first allow access to 'git shell' as a login shell in order to be vulnerable to this attack. This problem is patched in versions 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 and users are advised to upgrade to the latest version. Disabling 'git shell' access via remote logins is a viable short-term workaround.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-39253

Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone (where the source and target of the clone are on the same volume), Git copies the contents of the source's '$GIT_DIR/objects' directory into the destination by either creating hardlinks to the source contents, or copying them (if hardlinks are disabled via '--no-hardlinks'). A malicious actor could convince a victim to clone a repository with a symbolic link pointing at sensitive information on the victim's machine. This can be done either by having the victim clone a malicious repository on the same machine, or having them clone a malicious repository embedded as a bare repository via a submodule from any source, provided they clone with the '--recurse-submodules' option. Git does not create symbolic links in the '$GIT_DIR/objects' directory. The problem has been patched in the versions published on 2022-10-18, and backported to v2.30.x. Potential workarounds: Avoid cloning untrusted repositories using the '--local' optimization when on a shared machine, either by passing the '--no-local' option to 'git clone' or cloning from a URL that uses the 'file://' scheme. Alternatively, avoid cloning repositories from untrusted sources with '--recurse-submodules' or run 'git config --global protocol.file.allow user'.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-59 - Improper Link Resolution Before File Access ('Link Following')

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-42915

curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 status code to the client. Due to flaws in the error/cleanup handling, this could trigger a double free in curl if one of the following schemes were used in the URL for the transfer: dict, gopher, gophers, ldap, ldaps, rtmp, rtmps, or telnet. The earliest affected version is 7.77.0.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-415 - Double Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2509

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-415 - Double Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2021-46828

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-755 - Improper Handling of Exceptional Conditions

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-40304

An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-415 - Double Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1015

A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write issue.

6.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1016

A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-909 - Missing Initialization of Resource

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1348

A vulnerability was found in logrotate in how the state file is created. The state file is used to prevent parallel executions of multiple instances of logrotate by acquiring and releasing a file lock. When the state file does not exist, it is created with world-readable permission, allowing an unprivileged user to lock the state file, stopping any rotation. This flaw affects logrotate versions before 3.20.0.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-732 - Incorrect Permission Assignment for Critical Resource

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2097

AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-42919

Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library, when used with the forkserver start method on Linux, allows pickles to be deserialized from any user in the same machine local network namespace, which in many system configurations means any user on the same machine. Pickles can execute arbitrary code. Thus, this allows for local user privilege escalation to the user that any forkserver process is running as. Setting multiprocessing.util.abstract_sockets_supported to False is a workaround. The forkserver start method for multiprocessing is not the default start method. This issue is Linux specific because only Linux supports abstract namespace sockets. CPython before 3.9 does not make use of Linux abstract namespace sockets by default. Support for users manually specifying an abstract namespace socket was added as a bugfix in 3.7.8 and 3.8.3, but users would need to make specific uncommon API calls in order to do that in CPython before 3.9.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2002-20001

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-40617

strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-43995

Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the system libraries, compiler, and processor architecture.

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2522

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2571

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2580

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2581

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2598

Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3234

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3235

Use After Free in GitHub repository vim/vim prior to 9.0.0490.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-32207

When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-276 - Incorrect Default Permissions

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3256

Use After Free in GitHub repository vim/vim prior to 9.0.0530.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-32206

curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable "links" in this "decompression chain" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps.The use of such a decompression chain could result in a "malloc bomb", makingcurl end up spending enormous amounts of allocated heap memory, or trying toand returning out of memory errors.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3278

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-32208

When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client.

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3296

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-121 - Stack-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-32205

A malicious server can serve excessive amounts of 'Set-Cookie:' headers in a HTTP response to curl and curl < 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept, match and haven't expired. Due to cookie matching rules, a server on 'foo.example.com' can set cookies that also would match for 'bar.example.com', making it it possible for a "sister server" to effectively cause a denial of service for a sibling site on the same second level domain using this method.

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-770 - Allocation of Resources Without Limits or Throttling

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3297

Use After Free in GitHub repository vim/vim prior to 9.0.0579.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3324

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-121 - Stack-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3352

Use After Free in GitHub repository vim/vim prior to 9.0.0614.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-3705

A vulnerability was found in vim and classified as problematic. Affected by this issue is the function qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use after free. The attack may be launched remotely. Upgrading to version 9.0.0805 is able to address this issue. The name of the patch is d0fab10ed2a86698937e3c3fed2f10bd9bb5e731. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-212324.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-37434

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1927

Buffer Over-read in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-126 - Buffer Over-read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-1942

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2129

Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2175

Buffer Over-read in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2182

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2183

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2343

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2207

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2210

Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2344

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2304

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-121 - Stack-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2345

Use After Free in GitHub repository vim/vim prior to 9.0.0046.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2208

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2231

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2287

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2285

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-190 - Integer Overflow or Wraparound

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2284

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2286

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2289

Use After Free in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-416 - Use After Free

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2288

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2264

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2206

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

CVE-2022-2257

Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-125 - Out-of-bounds Read

Vendor Fix Update to the latest 2023.0.0 LTS Firmware Release. PHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.

Affected products

Fixed 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—

Known affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—

References

4 references

URL	Category
https://certvde.com/en/advisories/VDE-2023-001/	self
https://phoenixcontact.csaf-tp.certvde.com/.well-…	self
https://phoenixcontact.com/psirt	external
https://certvde.com/en/advisories/vendor/phoenixc…	external

Acknowledgments

CERT@VDE certvde.com

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "CERT@VDE",
        "summary": "coordination",
        "urls": [
          "https://certvde.com"
        ]
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-GB",
    "notes": [
      {
        "category": "summary",
        "text": "A new LTS Firmware release fixes known vulnerabilities in used open-source libraries.\nIn addition, the following improvements\u00a0have been implemented:\nHMI\n- Hardening against DoS attacks. - Hardening against memory leak problems in case of network attacks.\nWBM\n- Umlauts in the password of the \u0027User Manager\u0027 were not handled correctly. The password rule for upper and lower case was not followed. This could lead to unintentionally weaker passwords.- Hardening of WBM against Cross-Site-Scripting.\nUser Manager\n- In security notifications \u0027SecurityToken\u0027 was always displayed as \u00270000000\u0027 when creating or modifying users.- Hardening of Trust and Identity Stores.",
        "title": "Summary"
      },
      {
        "category": "description",
        "text": "Please consult the CVE entries listed above.",
        "title": "Impact"
      },
      {
        "category": "description",
        "text": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
        "title": "Mitigation"
      },
      {
        "category": "description",
        "text": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
        "title": "Remediation"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@phoenixcontact.com",
      "name": "Phoenix Contact GmbH \u0026 Co. KG",
      "namespace": "https://phoenixcontact.com/psirt"
    },
    "references": [
      {
        "category": "self",
        "summary": "VDE-2023-001: PHOENIX CONTACT: Multiple Vulnerabilities in PLCnext Firmware - HTML",
        "url": "https://certvde.com/en/advisories/VDE-2023-001/"
      },
      {
        "category": "self",
        "summary": "VDE-2023-001: PHOENIX CONTACT: Multiple Vulnerabilities in PLCnext Firmware - CSAF",
        "url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2023/vde-2023-001.json"
      },
      {
        "category": "external",
        "summary": "Vendor PSIRT",
        "url": "https://phoenixcontact.com/psirt"
      },
      {
        "category": "external",
        "summary": "CERT@VDE Security Advisories for Phoenix Contact GmbH \u0026 Co. KG",
        "url": "https://certvde.com/en/advisories/vendor/phoenixcontact/"
      }
    ],
    "title": "PHOENIX CONTACT: Multiple Vulnerabilities in PLCnext Firmware",
    "tracking": {
      "aliases": [
        "VDE-2023-001"
      ],
      "current_release_date": "2025-06-05T13:28:12.000Z",
      "generator": {
        "date": "2025-05-08T11:33:36.410Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.5.25"
        }
      },
      "id": "VDE-2023-001",
      "initial_release_date": "2023-02-14T07:50:00.000Z",
      "revision_history": [
        {
          "date": "2023-02-14T07:50:00.000Z",
          "number": "1",
          "summary": "Initial revision."
        },
        {
          "date": "2025-06-05T13:28:12.000Z",
          "number": "2",
          "summary": "Fix: quotation mark"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "AXC F 1152",
                "product": {
                  "name": "AXC F 1152",
                  "product_id": "CSAFPID-11001",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1151412"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "AXC F 2152",
                "product": {
                  "name": "AXC F 2152",
                  "product_id": "CSAFPID-11002",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2404267"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "AXC F 3152",
                "product": {
                  "name": "AXC F 3152",
                  "product_id": "CSAFPID-11003",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1069208"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "BPC 9102S",
                "product": {
                  "name": "BPC 9102S",
                  "product_id": "CSAFPID-11004",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1246285"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "RFC 4072R",
                "product": {
                  "name": "RFC 4072R",
                  "product_id": "CSAFPID-11005",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1136419"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "RFC 4072S",
                "product": {
                  "name": "RFC 4072S",
                  "product_id": "CSAFPID-11006",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1051328"
                    ]
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Hardware"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c2023.0.0 LTS",
                "product": {
                  "name": "Firmware \u003c2023.0.0 LTS",
                  "product_id": "CSAFPID-21001"
                }
              },
              {
                "category": "product_version",
                "name": "2023.0.0 LTS",
                "product": {
                  "name": "Firmware 2023.0.0 LTS",
                  "product_id": "CSAFPID-22001"
                }
              }
            ],
            "category": "product_family",
            "name": "Firmware"
          }
        ],
        "category": "vendor",
        "name": "PHOENIX CONTACT"
      }
    ],
    "product_groups": [
      {
        "group_id": "CSAFGID-0001",
        "product_ids": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ],
        "summary": "Affected products."
      },
      {
        "group_id": "CSAFGID-0002",
        "product_ids": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "summary": "Fixed products."
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on AXC F 1152",
          "product_id": "CSAFPID-31001"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on AXC F 2152",
          "product_id": "CSAFPID-31002"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on AXC F 3152",
          "product_id": "CSAFPID-31003"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on BPC 9102S",
          "product_id": "CSAFPID-31004"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11004"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on RFC 4072R",
          "product_id": "CSAFPID-31005"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11005"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2023.0.0 LTS installed on RFC 4072S",
          "product_id": "CSAFPID-31006"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11006"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on AXC F 1152",
          "product_id": "CSAFPID-32001"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on AXC F 2152",
          "product_id": "CSAFPID-32002"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on AXC F 3152",
          "product_id": "CSAFPID-32003"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on BPC 9102S",
          "product_id": "CSAFPID-32004"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11004"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on RFC 4072R",
          "product_id": "CSAFPID-32005"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11005"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 2023.0.0 LTS installed on RFC 4072S",
          "product_id": "CSAFPID-32006"
        },
        "product_reference": "CSAFPID-22001",
        "relates_to_product_reference": "CSAFPID-11006"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-30065",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free in Busybox 1.35-x\u0027s awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-30065"
    },
    {
      "cve": "CVE-2022-40674",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.1,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 8.1,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-40674"
    },
    {
      "cve": "CVE-2022-35252",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "description",
          "text": "When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a\"sister site\" to deny service to all siblings.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "environmentalScore": 3.7,
            "environmentalSeverity": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 3.7,
            "temporalSeverity": "LOW",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-35252"
    },
    {
      "cve": "CVE-2022-43680",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-42916",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "notes": [
        {
          "category": "description",
          "text": "In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly (instead of using an insecure cleartext HTTP step) even when HTTP is provided in the URL. This mechanism could be bypassed if the host name in the given URL uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion, e.g., using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop of U+002E (.). The earliest affected version is 7.77.0 2021-05-26.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-42916"
    },
    {
      "cve": "CVE-2022-1664",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "description",
          "text": "Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction can lead to directory traversal situations on specially crafted orig.tar and debian.tar tarballs.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1664"
    },
    {
      "cve": "CVE-2022-1304",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1304"
    },
    {
      "cve": "CVE-2022-29187",
      "cwe": {
        "id": "CWE-427",
        "name": "Uncontrolled Search Path Element"
      },
      "notes": [
        {
          "category": "description",
          "text": "Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-29187"
    },
    {
      "cve": "CVE-2022-39260",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "Git is an open source, scalable, distributed revision control system. \u0027git shell\u0027 is a restricted login shell that can be used to implement Git\u0027s push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the command arguments into an array improperly uses an \u0027int\u0027 to represent the number of entries in the array, allowing a malicious actor to intentionally overflow the return value, leading to arbitrary heap writes. Because the resulting array is then passed to \u0027execv()\u0027, it is possible to leverage this attack to gain remote code execution on a victim machine. Note that a victim must first allow access to \u0027git shell\u0027 as a login shell in order to be vulnerable to this attack. This problem is patched in versions 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 and users are advised to upgrade to the latest version. Disabling \u0027git shell\u0027 access via remote logins is a viable short-term workaround.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-39260"
    },
    {
      "cve": "CVE-2022-39253",
      "cwe": {
        "id": "CWE-59",
        "name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
      },
      "notes": [
        {
          "category": "description",
          "text": "Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone (where the source and target of the clone are on the same volume), Git copies the contents of the source\u0027s \u0027$GIT_DIR/objects\u0027 directory into the destination by either creating hardlinks to the source contents, or copying them (if hardlinks are disabled via \u0027--no-hardlinks\u0027). A malicious actor could convince a victim to clone a repository with a symbolic link pointing at sensitive information on the victim\u0027s machine. This can be done either by having the victim clone a malicious repository on the same machine, or having them clone a malicious repository embedded as a bare repository via a submodule from any source, provided they clone with the \u0027--recurse-submodules\u0027 option. Git does not create symbolic links in the \u0027$GIT_DIR/objects\u0027 directory. The problem has been patched in the versions published on 2022-10-18, and backported to v2.30.x. Potential workarounds: Avoid cloning untrusted repositories using the \u0027--local\u0027 optimization when on a shared machine, either by passing the \u0027--no-local\u0027 option to \u0027git clone\u0027 or cloning from a URL that uses the \u0027file://\u0027 scheme. Alternatively, avoid cloning repositories from untrusted sources with \u0027--recurse-submodules\u0027 or run \u0027git config --global protocol.file.allow user\u0027.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-39253"
    },
    {
      "cve": "CVE-2022-42915",
      "cwe": {
        "id": "CWE-415",
        "name": "Double Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 status code to the client. Due to flaws in the error/cleanup handling, this could trigger a double free in curl if one of the following schemes were used in the URL for the transfer: dict, gopher, gophers, ldap, ldaps, rtmp, rtmps, or telnet. The earliest affected version is 7.77.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.1,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 8.1,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-42915"
    },
    {
      "cve": "CVE-2022-2509",
      "cwe": {
        "id": "CWE-415",
        "name": "Double Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2509"
    },
    {
      "cve": "CVE-2021-46828",
      "cwe": {
        "id": "CWE-755",
        "name": "Improper Handling of Exceptional Conditions"
      },
      "notes": [
        {
          "category": "description",
          "text": "In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2021-46828"
    },
    {
      "cve": "CVE-2022-40304",
      "cwe": {
        "id": "CWE-415",
        "name": "Double Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-1015",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write issue.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "environmentalScore": 6.6,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.6,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1015"
    },
    {
      "cve": "CVE-2022-1016",
      "cwe": {
        "id": "CWE-909",
        "name": "Missing Initialization of Resource"
      },
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1016"
    },
    {
      "cve": "CVE-2022-1348",
      "cwe": {
        "id": "CWE-732",
        "name": "Incorrect Permission Assignment for Critical Resource"
      },
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in logrotate in how the state file is created. The state file is used to prevent parallel executions of multiple instances of logrotate by acquiring and releasing a file lock. When the state file does not exist, it is created with world-readable permission, allowing an unprivileged user to lock the state file, stopping any rotation. This flaw affects logrotate versions before 3.20.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1348"
    },
    {
      "cve": "CVE-2022-2097",
      "cwe": {
        "id": "CWE-327",
        "name": "Use of a Broken or Risky Cryptographic Algorithm"
      },
      "notes": [
        {
          "category": "description",
          "text": "AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn\u0027t written. In the special case of \"in place\" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "environmentalScore": 5.3,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.3,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2097"
    },
    {
      "cve": "CVE-2022-42919",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "description",
          "text": "Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library, when used with the forkserver start method on Linux, allows pickles to be deserialized from any user in the same machine local network namespace, which in many system configurations means any user on the same machine. Pickles can execute arbitrary code. Thus, this allows for local user privilege escalation to the user that any forkserver process is running as. Setting multiprocessing.util.abstract_sockets_supported to False is a workaround. The forkserver start method for multiprocessing is not the default start method. This issue is Linux specific because only Linux supports abstract namespace sockets. CPython before 3.9 does not make use of Linux abstract namespace sockets by default. Support for users manually specifying an abstract namespace socket was added as a bugfix in 3.7.8 and 3.8.3, but users would need to make specific uncommon API calls in order to do that in CPython before 3.9.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-42919"
    },
    {
      "cve": "CVE-2002-20001",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "description",
          "text": "The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2002-20001"
    },
    {
      "cve": "CVE-2022-40617",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "description",
          "text": "strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker\u0027s control) that doesn\u0027t properly respond but (for example) just does nothing after the initial TCP handshake, or sends an excessive amount of application data.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-40617"
    },
    {
      "cve": "CVE-2022-43995",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the system libraries, compiler, and processor architecture.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.1,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 7.1,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-43995"
    },
    {
      "cve": "CVE-2022-2522",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2522"
    },
    {
      "cve": "CVE-2022-2571",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2571"
    },
    {
      "cve": "CVE-2022-2580",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2580"
    },
    {
      "cve": "CVE-2022-2581",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2581"
    },
    {
      "cve": "CVE-2022-2598",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100.\n\n",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2598"
    },
    {
      "cve": "CVE-2022-3234",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3234"
    },
    {
      "cve": "CVE-2022-3235",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.0490.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3235"
    },
    {
      "cve": "CVE-2022-32207",
      "cwe": {
        "id": "CWE-276",
        "name": "Incorrect Default Permissions"
      },
      "notes": [
        {
          "category": "description",
          "text": "When curl \u003c 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-32207"
    },
    {
      "cve": "CVE-2022-3256",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.0530.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3256"
    },
    {
      "cve": "CVE-2022-32206",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "description",
          "text": "curl \u003c 7.84.0 supports \"chained\" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable \"links\" in this \"decompression chain\" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps.The use of such a decompression chain could result in a \"malloc bomb\", makingcurl end up spending enormous amounts of allocated heap memory, or trying toand returning out of memory errors.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-32206"
    },
    {
      "cve": "CVE-2022-3278",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "notes": [
        {
          "category": "description",
          "text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3278"
    },
    {
      "cve": "CVE-2022-32208",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "When curl \u003c 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 5.9,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.9,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-32208"
    },
    {
      "cve": "CVE-2022-3296",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3296"
    },
    {
      "cve": "CVE-2022-32205",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "notes": [
        {
          "category": "description",
          "text": "A malicious server can serve excessive amounts of \u0027Set-Cookie:\u0027 headers in a HTTP response to curl and curl \u003c 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept, match and haven\u0027t expired. Due to cookie matching rules, a server on \u0027foo.example.com\u0027 can set cookies that also would match for \u0027bar.example.com\u0027, making it it possible for a \"sister server\" to effectively cause a denial of service for a sibling site on the same second level domain using this method.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 4.3,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 4.3,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-32205"
    },
    {
      "cve": "CVE-2022-3297",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.0579.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3297"
    },
    {
      "cve": "CVE-2022-3324",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3324"
    },
    {
      "cve": "CVE-2022-3352",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.0614.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3352"
    },
    {
      "cve": "CVE-2022-3705",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in vim and classified as problematic. Affected by this issue is the function qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use after free. The attack may be launched remotely. Upgrading to version 9.0.0805 is able to address this issue. The name of the patch is d0fab10ed2a86698937e3c3fed2f10bd9bb5e731. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-212324.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.5,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-3705"
    },
    {
      "cve": "CVE-2022-37434",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-1927",
      "cwe": {
        "id": "CWE-126",
        "name": "Buffer Over-read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Buffer Over-read in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1927"
    },
    {
      "cve": "CVE-2022-1942",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-1942"
    },
    {
      "cve": "CVE-2022-2129",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2129"
    },
    {
      "cve": "CVE-2022-2175",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Buffer Over-read in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2175"
    },
    {
      "cve": "CVE-2022-2182",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2182"
    },
    {
      "cve": "CVE-2022-2183",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2183"
    },
    {
      "cve": "CVE-2022-2343",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2343"
    },
    {
      "cve": "CVE-2022-2207",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2207"
    },
    {
      "cve": "CVE-2022-2210",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2210"
    },
    {
      "cve": "CVE-2022-2344",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2344"
    },
    {
      "cve": "CVE-2022-2304",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2304"
    },
    {
      "cve": "CVE-2022-2345",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.0046.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2345"
    },
    {
      "cve": "CVE-2022-2208",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "notes": [
        {
          "category": "description",
          "text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2208"
    },
    {
      "cve": "CVE-2022-2231",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "notes": [
        {
          "category": "description",
          "text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 5.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2231"
    },
    {
      "cve": "CVE-2022-2287",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.1,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.1,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2287"
    },
    {
      "cve": "CVE-2022-2285",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "description",
          "text": "Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2285"
    },
    {
      "cve": "CVE-2022-2284",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2284"
    },
    {
      "cve": "CVE-2022-2286",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2286"
    },
    {
      "cve": "CVE-2022-2289",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "description",
          "text": "Use After Free in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2289"
    },
    {
      "cve": "CVE-2022-2288",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2288"
    },
    {
      "cve": "CVE-2022-2264",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "description",
          "text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2264"
    },
    {
      "cve": "CVE-2022-2206",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2206"
    },
    {
      "cve": "CVE-2022-2257",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "description",
          "text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Phoenix Contact recommends operating network-capable devices in closed networks or protected with a suitable firewall. For detailed information on our recommendations for measures to protect network-capable devices, please refer to our application note:\nMeasures to protect network-capable devices with Ethernet connection",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to the latest 2023.0.0 LTS Firmware Release.\nPHOENIX CONTACT recommends to always use an up-to-date version of the PLCnext Engineer.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 7.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006"
          ]
        }
      ],
      "title": "CVE-2022-2257"
    }
  ]
}

WID-SEC-W-2022-1844

Vulnerability from csaf_certbund - Published: 2022-10-24 22:00 - Updated: 2025-12-08 23:00

Summary

expat: Schwachstelle ermöglicht Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Expat ist ein XML Parser, der in der Programmiersprache-C geschrieben ist.

Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in expat ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2022-43680

Affected products

Known affected 40 products

Product	Identifier	Version
IBM Security Access Manager for Enterprise Single Sign-On IBM	`cpe:/a:ibm:security_access_manager_for_enterprise_single_sign_on:8.1`	—
Tenable Security Nessus <10.4.1 Tenable Security / Nessus		<10.4.1
IBM FileNet Content Manager 5.5.10 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.10`	5.5.10
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
F5 BIG-IP 15.1.0-15.1.10 F5 / BIG-IP	`cpe:/a:f5:big-ip:15.1.0_-_15.1.10`	15.1.0-15.1.10
IBM Tivoli Monitoring IBM	`cpe:/a:ibm:tivoli_monitoring:-`	—
Tenable Security Nessus 10.3.2 Tenable Security / Nessus	`cpe:/a:tenable:nessus:10.3.2`	10.3.2
F5 BIG-IP 16.1.0-16.1.4 F5 / BIG-IP	`cpe:/a:f5:big-ip:16.1.0_-_16.1.4`	16.1.0-16.1.4
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-::~~~vmware_vsphere~~`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
IBM FileNet Content Manager 5.5.4 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.4`	5.5.4
Dell NetWorker vProxy <4.3.0-40 Dell / NetWorker		vProxy <4.3.0-40
IBM FileNet Content Manager IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
IBM MQ IBM	`cpe:/a:ibm:mq:-`	—
Meinberg LANTIME <7.06.013 Meinberg / LANTIME		<7.06.013
HCL Commerce 9.0.1.x HCL / Commerce	`cpe:/a:hcltechsw:commerce:9.0.1.x`	9.0.1.x
F5 BIG-IP 17.1.0-17.1.1 F5 / BIG-IP	`cpe:/a:f5:big-ip:17.1.0_-_17.1.1`	17.1.0-17.1.1
HCL Commerce 9.1.x HCL / Commerce	`cpe:/a:hcltechsw:commerce:9.1.x`	9.1.x
IBM Security Verify Access 10.0.X IBM / Security Verify Access	`cpe:/a:ibm:security_verify_access:10.0.x`	10.0.X
HCL Commerce 7 HCL / Commerce	`cpe:/a:hcltechsw:commerce:7`	7
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
IBM FileNet Content Manager 5.5.9 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.9`	5.5.9
IBM FileNet Content Manager 5.5.8 IBM / FileNet Content Manager	`cpe:/a:ibm:filenet_content_manager:5.5.8`	5.5.8
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
OpenBSD OpenBSD 7.1 OpenBSD / OpenBSD	`cpe:/a:openbsd:openbsd:7.1`	7.1
IBM Tivoli Network Manager <4.2.0 FP17 IBM / Tivoli Network Manager		<4.2.0 FP17
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
IBM Power Hardware Management Console V9 IBM / Power Hardware Management Console	`cpe:/a:ibm:hardware_management_console:v9`	V9
Meinberg LANTIME 7.06.012 Meinberg / LANTIME	`cpe:/h:meinberg:lantime:7.06.012`	7.06.012
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
IBM Rational ClearCase IBM	`cpe:/a:ibm:rational_clearcase:-`	—
Hitachi Energy AFS 65x Hitachi Energy / AFS	`cpe:/h:abb:afs:65x`	65x
Hitachi Energy AFS 67x Hitachi Energy / AFS	`cpe:/h:abb:afs:67x`	67x
IBM Power Hardware Management Console DS8000 IBM / Power Hardware Management Console	`cpe:/a:ibm:hardware_management_console:ds8000`	DS8000
IBM AIX 7.3 IBM / AIX	`cpe:/o:ibm:aix:7.3`	7.3
Tenable Security Nessus <8.15.7 Tenable Security / Nessus		<8.15.7
HCL Commerce 8 HCL / Commerce	`cpe:/a:hcltechsw:commerce:8`	8
OpenBSD OpenBSD 7.2 OpenBSD / OpenBSD	`cpe:/a:openbsd:openbsd:7.2`	7.2

Last affected 1 product

Product	Identifier	Version	Remediation
Open Source expat <=2.4.9 Open Source / expat		<=2.4.9

References

49 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://github.com/advisories/GHSA-4hjv-8mmr-jxwv	external
https://lists.debian.org/debian-lts-announce/2022…	external
https://lists.debian.org/debian-security-announce…	external
https://security.gentoo.org/glsa/202210-38	external
https://www.openbsd.org/errata71.html	external
https://www.openbsd.org/errata72.html	external
https://www.tenable.com/security/tns-2022-23	external
https://www.tenable.com/security/tns-2022-24	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.tenable.com/security/tns-2022-26	external
https://www.ibm.com/blogs/psirt/security-bulletin…	external
https://ubuntu.com/security/notices/USN-5638-2	external
https://security.netapp.com/advisory/ntap-2022111…	external
https://ubuntu.com/security/notices/USN-5638-3	external
https://alas.aws.amazon.com/AL2/ALAS-2022-1885.html	external
https://www.ibm.com/support/pages/node/6845768	external
https://alas.aws.amazon.com/AL2022/ALAS-2022-261.html	external
https://alas.aws.amazon.com/ALAS-2022-1655.html	external
https://www.ibm.com/support/pages/node/6847293	external
https://www.ibm.com/support/pages/node/6848279	external
https://aix.software.ibm.com/aix/efixes/security/…	external
https://access.redhat.com/errata/RHSA-2023:0103	external
https://linux.oracle.com/errata/ELSA-2023-0103.html	external
https://linux.oracle.com/errata/ELSA-2023-0337.html	external
https://access.redhat.com/errata/RHSA-2023:0337	external
https://www.ibm.com/support/pages/node/6856375	external
https://ubuntu.com/security/notices/USN-5638-4	external
https://www.meinberg.de/german/news/meinberg-secu…	external
https://support.hcltechsw.com/csm?id=kb_article&s…	external
https://www.ibm.com/support/pages/node/6985561	external
https://www.meinberg.de/german/news/meinberg-secu…	external
https://www.ibm.com/support/pages/node/6986569	external
https://www.cisa.gov/news-events/ics-advisories/i…	external
https://www.ibm.com/support/pages/node/6999237	external
https://access.redhat.com/errata/RHSA-2023:3355	external
https://support.hcltechsw.com/csm?id=kb_article&s…	external
https://www.ibm.com/support/pages/node/6857861	external
https://www.ibm.com/support/pages/node/7008109	external
https://www.ibm.com/support/pages/node/7009735	external
https://www.ibm.com/support/pages/node/7006449	external
https://www.dell.com/support/kbdoc/de-de/00021096…	external
https://access.redhat.com/errata/RHSA-2024:0421	external
https://my.f5.com/manage/s/article/K000139525	external
https://access.redhat.com/errata/RHSA-2025:22785	external
https://access.redhat.com/errata/RHSA-2025:22871	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Expat ist ein XML Parser, der in der Programmiersprache-C geschrieben ist.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in expat ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1844 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1844.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1844 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1844"
      },
      {
        "category": "external",
        "summary": "GitHub Security Advisory GHSA-4hjv-8mmr-jxwv vom 2022-10-24",
        "url": "https://github.com/advisories/GHSA-4hjv-8mmr-jxwv"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3165 vom 2022-10-28",
        "url": "https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5266 vom 2022-10-30",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00236.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202210-38 vom 2022-10-31",
        "url": "https://security.gentoo.org/glsa/202210-38"
      },
      {
        "category": "external",
        "summary": "OpenBSD 7.1 Errata",
        "url": "https://www.openbsd.org/errata71.html"
      },
      {
        "category": "external",
        "summary": "OpenBSD 7.2 Errata",
        "url": "https://www.openbsd.org/errata72.html"
      },
      {
        "category": "external",
        "summary": "Tenable Security Advisory TNS-2022-23 vom 2022-11-03",
        "url": "https://www.tenable.com/security/tns-2022-23"
      },
      {
        "category": "external",
        "summary": "Tenable Security Advisory TNS-2022-24 vom 2022-11-03",
        "url": "https://www.tenable.com/security/tns-2022-24"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3874-1 vom 2022-11-04",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012811.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3884-1 vom 2022-11-07",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012821.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3912-1 vom 2022-11-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012847.html"
      },
      {
        "category": "external",
        "summary": "Tenable Security Advisory TNS-2022-26 vom 2022-11-09",
        "url": "https://www.tenable.com/security/tns-2022-26"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6839161 vom 2022-11-15",
        "url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-http-server-is-vulnerable-to-denial-of-service-due-to-libexpat-cve-2022-43680-cve-2013-0340-cve-2017-9233/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5638-2 vom 2022-11-17",
        "url": "https://ubuntu.com/security/notices/USN-5638-2"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20221118-0007 vom 2022-11-18",
        "url": "https://security.netapp.com/advisory/ntap-20221118-0007/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5638-3 vom 2022-11-23",
        "url": "https://ubuntu.com/security/notices/USN-5638-3"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1885 vom 2022-12-07",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1885.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6845768 vom 2022-12-07",
        "url": "https://www.ibm.com/support/pages/node/6845768"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-261 vom 2022-12-09",
        "url": "https://alas.aws.amazon.com/AL2022/ALAS-2022-261.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2022-1655 vom 2022-12-10",
        "url": "https://alas.aws.amazon.com/ALAS-2022-1655.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6847293 vom 2022-12-20",
        "url": "https://www.ibm.com/support/pages/node/6847293"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6848279 vom 2022-12-23",
        "url": "https://www.ibm.com/support/pages/node/6848279"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6851439 vom 2022-12-22",
        "url": "https://aix.software.ibm.com/aix/efixes/security/python_advisory3.asc"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0103 vom 2023-01-12",
        "url": "https://access.redhat.com/errata/RHSA-2023:0103"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-0103 vom 2023-01-12",
        "url": "https://linux.oracle.com/errata/ELSA-2023-0103.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-0337 vom 2023-01-24",
        "url": "https://linux.oracle.com/errata/ELSA-2023-0337.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0337 vom 2023-01-23",
        "url": "https://access.redhat.com/errata/RHSA-2023:0337"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6856375 vom 2023-01-31",
        "url": "https://www.ibm.com/support/pages/node/6856375"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5638-4 vom 2023-02-28",
        "url": "https://ubuntu.com/security/notices/USN-5638-4"
      },
      {
        "category": "external",
        "summary": "Meinberg Security Advisory MBGSA-2023.02 vom 2023-03-14",
        "url": "https://www.meinberg.de/german/news/meinberg-security-advisory-mbgsa-2023-02-meinberg-lantime-firmware-v7-06-012.htm"
      },
      {
        "category": "external",
        "summary": "HCL Article KB0104147 vom 2023-04-20",
        "url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0104147"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6985561 vom 2023-04-24",
        "url": "https://www.ibm.com/support/pages/node/6985561"
      },
      {
        "category": "external",
        "summary": "Meinberg Security Advisory MBGSA-2023.02 vom 2023-03-23",
        "url": "https://www.meinberg.de/german/news/meinberg-security-advisory-mbgsa-2023-02-lantime-firmware-v7-06-013.htm"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6986569 vom 2023-04-28",
        "url": "https://www.ibm.com/support/pages/node/6986569"
      },
      {
        "category": "external",
        "summary": "Hitachi Cybersecurity Advisory vom 2023-05-24",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-01"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6999237 vom 2023-05-30",
        "url": "https://www.ibm.com/support/pages/node/6999237"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3355 vom 2023-06-05",
        "url": "https://access.redhat.com/errata/RHSA-2023:3355"
      },
      {
        "category": "external",
        "summary": "HCL Article KB0104916 vom 2023-06-06",
        "url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0104916"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 6857861 vom 2023-06-27",
        "url": "https://www.ibm.com/support/pages/node/6857861"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7008109 vom 2023-06-29",
        "url": "https://www.ibm.com/support/pages/node/7008109"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7009735 vom 2023-07-05",
        "url": "https://www.ibm.com/support/pages/node/7009735"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7006449 vom 2023-07-07",
        "url": "https://www.ibm.com/support/pages/node/7006449"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-069 vom 2023-07-21",
        "url": "https://www.dell.com/support/kbdoc/de-de/000210964/dsa-2023-069-dell-networker-vproxy-security-update-for-multiple-vulnerabilities-detected-on-vproxy-4-3-0-38"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory",
        "url": "https://access.redhat.com/errata/RHSA-2024:0421"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K000139525 vom 2024-05-24",
        "url": "https://my.f5.com/manage/s/article/K000139525"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22785 vom 2025-12-05",
        "url": "https://access.redhat.com/errata/RHSA-2025:22785"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:22871 vom 2025-12-09",
        "url": "https://access.redhat.com/errata/RHSA-2025:22871"
      }
    ],
    "source_lang": "en-US",
    "title": "expat: Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2025-12-08T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-09T12:05:04.154+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2022-1844",
      "initial_release_date": "2022-10-24T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-10-24T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-10-27T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-10-30T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-10-31T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2022-11-02T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Tenable aufgenommen"
        },
        {
          "date": "2022-11-06T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE und Fedora aufgenommen"
        },
        {
          "date": "2022-11-07T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-09T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Tenable aufgenommen"
        },
        {
          "date": "2022-11-14T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2022-11-17T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-11-20T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2022-11-23T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2022-12-06T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Amazon und IBM aufgenommen"
        },
        {
          "date": "2022-12-11T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2022-12-20T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2022-12-22T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-01-11T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-01-12T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-01-23T23:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
        },
        {
          "date": "2023-01-31T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-02-28T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-03-13T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Meinberg aufgenommen"
        },
        {
          "date": "2023-04-19T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2023-04-23T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-04-24T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2023-05-01T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-05-23T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2023-05-29T22:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-06-05T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Red Hat und HCL aufgenommen"
        },
        {
          "date": "2023-06-27T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-06-28T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
        },
        {
          "date": "2023-07-05T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-07-06T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2023-07-23T22:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-01-24T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-05-26T22:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von F5 aufgenommen"
        },
        {
          "date": "2025-12-04T23:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-12-08T23:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "39"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vProxy \u003c4.3.0-40",
                "product": {
                  "name": "Dell NetWorker vProxy \u003c4.3.0-40",
                  "product_id": "T028847"
                }
              },
              {
                "category": "product_version",
                "name": "vProxy 4.3.0-40",
                "product": {
                  "name": "Dell NetWorker vProxy 4.3.0-40",
                  "product_id": "T028847-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:networker:vproxy__4.3.0-40"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "NetWorker"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "17.1.0-17.1.1",
                "product": {
                  "name": "F5 BIG-IP 17.1.0-17.1.1",
                  "product_id": "T034899",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:17.1.0_-_17.1.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "16.1.0-16.1.4",
                "product": {
                  "name": "F5 BIG-IP 16.1.0-16.1.4",
                  "product_id": "T034901",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:16.1.0_-_16.1.4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "15.1.0-15.1.10",
                "product": {
                  "name": "F5 BIG-IP 15.1.0-15.1.10",
                  "product_id": "T034902",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:15.1.0_-_15.1.10"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BIG-IP"
          }
        ],
        "category": "vendor",
        "name": "F5"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "8",
                "product": {
                  "name": "HCL Commerce 8",
                  "product_id": "T020130",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7",
                "product": {
                  "name": "HCL Commerce 7",
                  "product_id": "T027460",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.0.1.x",
                "product": {
                  "name": "HCL Commerce 9.0.1.x",
                  "product_id": "T027461",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:9.0.1.x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.1.x",
                "product": {
                  "name": "HCL Commerce 9.1.x",
                  "product_id": "T027462",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:9.1.x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Commerce"
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "65x",
                "product": {
                  "name": "Hitachi Energy AFS 65x",
                  "product_id": "T027841",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:abb:afs:65x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "67x",
                "product": {
                  "name": "Hitachi Energy AFS 67x",
                  "product_id": "T027842",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:abb:afs:67x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "AFS"
          }
        ],
        "category": "vendor",
        "name": "Hitachi Energy"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.3",
                "product": {
                  "name": "IBM AIX 7.3",
                  "product_id": "T021486",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:ibm:aix:7.3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "AIX"
          },
          {
            "category": "product_name",
            "name": "IBM DB2",
            "product": {
              "name": "IBM DB2",
              "product_id": "5104",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:db2:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5.5.4",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.4",
                  "product_id": "782758",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.5.8",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.8",
                  "product_id": "T024608",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.5.9",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.9",
                  "product_id": "T024609",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM FileNet Content Manager",
                "product": {
                  "name": "IBM FileNet Content Manager",
                  "product_id": "T025993",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.5.10",
                "product": {
                  "name": "IBM FileNet Content Manager 5.5.10",
                  "product_id": "T028340",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:filenet_content_manager:5.5.10"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FileNet Content Manager"
          },
          {
            "category": "product_name",
            "name": "IBM MQ",
            "product": {
              "name": "IBM MQ",
              "product_id": "T021398",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:mq:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "V9",
                "product": {
                  "name": "IBM Power Hardware Management Console V9",
                  "product_id": "T021107",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:hardware_management_console:v9"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "DS8000",
                "product": {
                  "name": "IBM Power Hardware Management Console DS8000",
                  "product_id": "T028436",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:hardware_management_console:ds8000"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Power Hardware Management Console"
          },
          {
            "category": "product_name",
            "name": "IBM Rational ClearCase",
            "product": {
              "name": "IBM Rational ClearCase",
              "product_id": "T004180",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:rational_clearcase:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "IBM Security Access Manager for Enterprise Single Sign-On",
            "product": {
              "name": "IBM Security Access Manager for Enterprise Single Sign-On",
              "product_id": "T000094",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:security_access_manager_for_enterprise_single_sign_on:8.1"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "10.0.X",
                "product": {
                  "name": "IBM Security Verify Access 10.0.X",
                  "product_id": "T026175",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_verify_access:10.0.x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Security Verify Access"
          },
          {
            "category": "product_name",
            "name": "IBM Tivoli Monitoring",
            "product": {
              "name": "IBM Tivoli Monitoring",
              "product_id": "T011128",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:tivoli_monitoring:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.2.0 FP17",
                "product": {
                  "name": "IBM Tivoli Network Manager \u003c4.2.0 FP17",
                  "product_id": "T027902"
                }
              },
              {
                "category": "product_version",
                "name": "4.2.0 FP17",
                "product": {
                  "name": "IBM Tivoli Network Manager 4.2.0 FP17",
                  "product_id": "T027902-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:tivoli_network_manager:4.2.0:fp17"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Tivoli Network Manager"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.06.012",
                "product": {
                  "name": "Meinberg LANTIME 7.06.012",
                  "product_id": "T026735",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:meinberg:lantime:7.06.012"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.06.013",
                "product": {
                  "name": "Meinberg LANTIME \u003c7.06.013",
                  "product_id": "T027496"
                }
              },
              {
                "category": "product_version",
                "name": "7.06.013",
                "product": {
                  "name": "Meinberg LANTIME 7.06.013",
                  "product_id": "T027496-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:meinberg:lantime:7.06.013"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "LANTIME"
          }
        ],
        "category": "vendor",
        "name": "Meinberg"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp ActiveIQ Unified Manager",
            "product": {
              "name": "NetApp ActiveIQ Unified Manager",
              "product_id": "658714",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:active_iq_unified_manager:-::~~~vmware_vsphere~~"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=2.4.9",
                "product": {
                  "name": "Open Source expat \u003c=2.4.9",
                  "product_id": "T024686"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=2.4.9",
                "product": {
                  "name": "Open Source expat \u003c=2.4.9",
                  "product_id": "T024686-fixed"
                }
              }
            ],
            "category": "product_name",
            "name": "expat"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.1",
                "product": {
                  "name": "OpenBSD OpenBSD 7.1",
                  "product_id": "T023225",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openbsd:openbsd:7.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.2",
                "product": {
                  "name": "OpenBSD OpenBSD 7.2",
                  "product_id": "T025100",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openbsd:openbsd:7.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenBSD"
          }
        ],
        "category": "vendor",
        "name": "OpenBSD"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "10.3.2",
                "product": {
                  "name": "Tenable Security Nessus 10.3.2",
                  "product_id": "T025192",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:tenable:nessus:10.3.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.4.1",
                "product": {
                  "name": "Tenable Security Nessus \u003c10.4.1",
                  "product_id": "T025193"
                }
              },
              {
                "category": "product_version",
                "name": "10.4.1",
                "product": {
                  "name": "Tenable Security Nessus 10.4.1",
                  "product_id": "T025193-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:tenable:nessus:10.4.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.15.7",
                "product": {
                  "name": "Tenable Security Nessus \u003c8.15.7",
                  "product_id": "T025285"
                }
              },
              {
                "category": "product_version",
                "name": "8.15.7",
                "product": {
                  "name": "Tenable Security Nessus 8.15.7",
                  "product_id": "T025285-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:tenable:nessus:8.15.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Nessus"
          }
        ],
        "category": "vendor",
        "name": "Tenable Security"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-43680",
      "product_status": {
        "known_affected": [
          "T000094",
          "T025193",
          "T028340",
          "67646",
          "T034902",
          "T011128",
          "T025192",
          "T034901",
          "658714",
          "T004914",
          "782758",
          "T028847",
          "T025993",
          "398363",
          "T021398",
          "T027496",
          "T027461",
          "T034899",
          "T027462",
          "T026175",
          "T027460",
          "T012167",
          "T024609",
          "T024608",
          "2951",
          "T002207",
          "T023225",
          "T027902",
          "T000126",
          "T021107",
          "T026735",
          "5104",
          "T004180",
          "T027841",
          "T027842",
          "T028436",
          "T021486",
          "T025285",
          "T020130",
          "T025100"
        ],
        "last_affected": [
          "T024686"
        ]
      },
      "release_date": "2022-10-24T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    }
  ]
}

WID-SEC-W-2022-2372

Vulnerability from csaf_certbund - Published: 2022-12-19 23:00 - Updated: 2023-01-19 23:00

Summary

genua genugate: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Die genugate ist ein mehrstufiges Firewallprodukt des Herstellers genua GmbH.

Angriff: Ein entfernter, anonymer Angreifer kann einige der mehreren Schwachstellen in Komponenten von Drittanbietern ausnutzen, die von genua genugate verwendet werden, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen.

Betroffene Betriebssysteme: - Sonstiges

CVE-2022-44640

In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen.

CVE-2022-44638

CVE-2022-43680

CVE-2022-42916

CVE-2022-42915

CVE-2022-42898

CVE-2022-41916

CVE-2022-40674

CVE-2022-40304

CVE-2022-40303

CVE-2022-35260

CVE-2022-35252

CVE-2022-3437

CVE-2022-32221

CVE-2021-44758

CVE-2021-3671

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://kunde.genua.de/nc/suche/view/neuer-patch-…	external
https://kunde.genua.de/nc/suche/view/neuer-patch-…	external
https://kunde.genua.de/nc/suche/view/neuer-patch-…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Die genugate ist ein mehrstufiges Firewallprodukt des Herstellers genua GmbH.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann einige der mehreren Schwachstellen in Komponenten von Drittanbietern ausnutzen, die von genua genugate verwendet werden, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-2372 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2372.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-2372 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2372"
      },
      {
        "category": "external",
        "summary": "Genua Patch vom 2022-12-19",
        "url": "https://kunde.genua.de/nc/suche/view/neuer-patch-genugate-105p1-verfuegbar.html?tx_genusupport_content%5Bidentity%5D=0\u0026tx_genusupport_content%5BsearchTerm%5D=\u0026tx_genusupport_content%5BforcePath%5D=\u0026tx_genusupport_content%5Baction%5D=genuSupportSearch\u0026tx_genusupport_content%5Bcontroller%5D=Content\u0026cHash=37a9613baf9adebc3e20772aaa249fc3"
      },
      {
        "category": "external",
        "summary": "Genua Patch vom 2022-12-19",
        "url": "https://kunde.genua.de/nc/suche/view/neuer-patch-genugate-104p2-verfuegbar.html?tx_genusupport_content%5Bidentity%5D=0\u0026tx_genusupport_content%5BsearchTerm%5D=\u0026tx_genusupport_content%5BforcePath%5D=\u0026tx_genusupport_content%5Baction%5D=genuSupportSearch\u0026tx_genusupport_content%5Bcontroller%5D=Content\u0026cHash=9cc97408444883591a94c7b03271ff7b"
      },
      {
        "category": "external",
        "summary": "Genua Patch vom 2022-12-19",
        "url": "https://kunde.genua.de/nc/suche/view/neuer-patch-genugate-100p12-verfuegbar.html?tx_genusupport_content%5Bidentity%5D=0\u0026tx_genusupport_content%5BsearchTerm%5D=\u0026tx_genusupport_content%5BforcePath%5D=\u0026tx_genusupport_content%5Baction%5D=genuSupportSearch\u0026tx_genusupport_content%5Bcontroller%5D=Content\u0026cHash=ef1c457a05f6f4465cc46f9369fe23d5"
      }
    ],
    "source_lang": "en-US",
    "title": "genua genugate: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-01-19T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:40:14.418+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2022-2372",
      "initial_release_date": "2022-12-19T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-12-19T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-01-19T23:00:00.000+00:00",
          "number": "2",
          "summary": "CVE Nummern erg\u00e4nzt; Hinweis: nicht alle CVE bei genugate ausnutzbar"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "genua genugate \u003c 10.0p12",
                "product": {
                  "name": "genua genugate \u003c 10.0p12",
                  "product_id": "T025654",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:genua:genugate:10.0p12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "genua genugate \u003c 10.4p2",
                "product": {
                  "name": "genua genugate \u003c 10.4p2",
                  "product_id": "T025655",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:genua:genugate:10.4p2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "genua genugate \u003c 10.5p1",
                "product": {
                  "name": "genua genugate \u003c 10.5p1",
                  "product_id": "T025656",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:genua:genugate:10.5p1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "genugate"
          }
        ],
        "category": "vendor",
        "name": "genua"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-44640",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-44640"
    },
    {
      "cve": "CVE-2022-44638",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-44638"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-42916",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-42916"
    },
    {
      "cve": "CVE-2022-42915",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-42915"
    },
    {
      "cve": "CVE-2022-42898",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-42898"
    },
    {
      "cve": "CVE-2022-41916",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-41916"
    },
    {
      "cve": "CVE-2022-40674",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-40674"
    },
    {
      "cve": "CVE-2022-40304",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-40303",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-40303"
    },
    {
      "cve": "CVE-2022-35260",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-35260"
    },
    {
      "cve": "CVE-2022-35252",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-35252"
    },
    {
      "cve": "CVE-2022-3437",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-3437"
    },
    {
      "cve": "CVE-2022-32221",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2022-32221"
    },
    {
      "cve": "CVE-2021-44758",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2021-44758"
    },
    {
      "cve": "CVE-2021-3671",
      "notes": [
        {
          "category": "description",
          "text": "In genua genugate existieren mehrere Schwachstellen in unterschiedlichen Komponenten. Ein Angreifer kann einige dieser Schwachstellen ausnutzen, um Informationen offenzulegen und potentiell weitere, unbekannte Auswirkungen zu erzielen."
        }
      ],
      "release_date": "2022-12-19T23:00:00.000+00:00",
      "title": "CVE-2021-3671"
    }
  ]
}

WID-SEC-W-2023-0132

Vulnerability from csaf_certbund - Published: 2023-01-17 23:00 - Updated: 2023-05-01 22:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Kritisch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2018-25032

In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2018-7489

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-10693

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-11987

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-13956

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-31812

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36090

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36770

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-42717

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-1122

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-2274

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-23305

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-23457

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-24329

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-25236

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-25647

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-27404

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-27782

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-29824

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-3171

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-31813

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-37434

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40146

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40150

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40153

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40664

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42003

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42889

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42920

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-43680

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45047

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21832

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21837

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21838

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21839

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21841

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21842

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21846

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21859

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21861

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21862

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21891

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21892

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21894

Affected products

Known affected 6 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 6.4.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:6.4.0.0.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 5.9.0.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:5.9.0.0.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.cisa.gov/news-events/alerts/2023/05/0…	external
https://www.oracle.com/security-alerts/cpujan2023…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0132 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0132.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0132 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0132"
      },
      {
        "category": "external",
        "summary": "CISA Known Exploited Vulnerabilities Catalog vom 2023-05-01",
        "url": "https://www.cisa.gov/news-events/alerts/2023/05/01/cisa-adds-three-known-exploited-vulnerabilities-catalog"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - January 2023 - Appendix Oracle Fusion Middleware vom 2023-01-17",
        "url": "https://www.oracle.com/security-alerts/cpujan2023.html#AppendixFMW"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-05-01T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:41:47.510+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-0132",
      "initial_release_date": "2023-01-17T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-01-17T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-05-01T22:00:00.000+00:00",
          "number": "2",
          "summary": "Exploit-Hinweis f\u00fcr CVE-2023-21839 aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.3.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.3.0",
                  "product_id": "618028",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 5.9.0.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 5.9.0.0.0",
                  "product_id": "T021683",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:5.9.0.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 8.5.6",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.6",
                  "product_id": "T024993",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 6.4.0.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 6.4.0.0.0",
                  "product_id": "T024994",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:6.4.0.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware \u003c 13.9.4.2.11",
                "product": {
                  "name": "Oracle Fusion Middleware \u003c 13.9.4.2.11",
                  "product_id": "T025879",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:13.9.4.2.11"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-25032",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2018-7489",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2018-7489"
    },
    {
      "cve": "CVE-2020-10693",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2020-10693"
    },
    {
      "cve": "CVE-2020-11987",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2020-11987"
    },
    {
      "cve": "CVE-2020-13956",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2020-13956"
    },
    {
      "cve": "CVE-2021-31812",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-31812"
    },
    {
      "cve": "CVE-2021-36090",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-36090"
    },
    {
      "cve": "CVE-2021-36770",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-36770"
    },
    {
      "cve": "CVE-2021-42717",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2021-42717"
    },
    {
      "cve": "CVE-2022-1122",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-1122"
    },
    {
      "cve": "CVE-2022-2274",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-2274"
    },
    {
      "cve": "CVE-2022-23305",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-23305"
    },
    {
      "cve": "CVE-2022-23457",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-23457"
    },
    {
      "cve": "CVE-2022-24329",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-24329"
    },
    {
      "cve": "CVE-2022-25236",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-25236"
    },
    {
      "cve": "CVE-2022-25647",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-25647"
    },
    {
      "cve": "CVE-2022-27404",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-27404"
    },
    {
      "cve": "CVE-2022-27782",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-27782"
    },
    {
      "cve": "CVE-2022-29824",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-29824"
    },
    {
      "cve": "CVE-2022-3171",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-31813",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-31813"
    },
    {
      "cve": "CVE-2022-37434",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-40146",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40146"
    },
    {
      "cve": "CVE-2022-40150",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40150"
    },
    {
      "cve": "CVE-2022-40153",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40153"
    },
    {
      "cve": "CVE-2022-40664",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-40664"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-42889",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42889"
    },
    {
      "cve": "CVE-2022-42920",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-42920"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-45047",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2022-45047"
    },
    {
      "cve": "CVE-2023-21832",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21832"
    },
    {
      "cve": "CVE-2023-21837",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21837"
    },
    {
      "cve": "CVE-2023-21838",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21838"
    },
    {
      "cve": "CVE-2023-21839",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21839"
    },
    {
      "cve": "CVE-2023-21841",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21841"
    },
    {
      "cve": "CVE-2023-21842",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21842"
    },
    {
      "cve": "CVE-2023-21846",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21846"
    },
    {
      "cve": "CVE-2023-21859",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21859"
    },
    {
      "cve": "CVE-2023-21861",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21861"
    },
    {
      "cve": "CVE-2023-21862",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21862"
    },
    {
      "cve": "CVE-2023-21891",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21891"
    },
    {
      "cve": "CVE-2023-21892",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21892"
    },
    {
      "cve": "CVE-2023-21894",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "T024994",
          "751674",
          "T021683",
          "829576"
        ]
      },
      "release_date": "2023-01-17T23:00:00.000+00:00",
      "title": "CVE-2023-21894"
    }
  ]
}

WID-SEC-W-2023-0292

Vulnerability from csaf_certbund - Published: 2023-02-06 23:00 - Updated: 2023-06-01 22:00

Summary

Android Patchday Februar 2023

Severity

Hoch

Notes

Produktbeschreibung: Das Android Betriebssystem von Google ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um seine Privilegien zu erhöhen, vertrauliche Informationen offenzulegen und einen Denial-of-Service-Zustand zu verursachen.

Betroffene Betriebssysteme: - Android

CVE-2022-0850

Es bestehen mehrere Schwachstellen in Google Android bezüglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Darüber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in böser Absicht erstellten App.

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-20443

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-20455

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-20481

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-20551

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-25711

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33221

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33225

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33232

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33233

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33243

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33248

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33271

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33277

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33280

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-33306

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-34145

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-34146

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-39189

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-39842

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-40502

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-40512

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-40514

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-41222

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-43680

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-47331

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2022-47339

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20602

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20932

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20933

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20934

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20937

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20938

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20939

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20940

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20942

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20943

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20944

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20945

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20946

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20948

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

CVE-2023-20949

Affected products

Known affected 6 products

Product	Identifier	Version
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Google Android 11 Google / Android	`cpe:/o:google:android:11`	—
Google Android 12L Google / Android	`cpe:/o:google:android:12l`	—
Google Android 10 Google / Android	`cpe:/o:google:android:10`	—
Google Android 13 Google / Android	`cpe:/o:google:android:13`	—
Google Android 12 Google / Android	`cpe:/o:google:android:12`	—

References

10 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://ubuntu.com/security/notices/USN-6134-1	external
https://ubuntu.com/security/notices/USN-6133-1	external
https://ubuntu.com/security/notices/USN-5951-1	external
https://ubuntu.com/security/notices/USN-5940-1	external
https://ubuntu.com/security/notices/USN-5939-1	external
https://ubuntu.com/security/notices/USN-5934-1	external
https://source.android.com/docs/security/bulletin…	external
https://source.android.com/docs/security/bulletin…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Das Android Betriebssystem von Google ist eine quelloffene Plattform f\u00fcr mobile Ger\u00e4te. Die Basis bildet der Linux-Kernel.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um seine Privilegien zu erh\u00f6hen, vertrauliche Informationen offenzulegen und einen Denial-of-Service-Zustand zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Android",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0292 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0292.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0292 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0292"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6134-1 vom 2023-06-01",
        "url": "https://ubuntu.com/security/notices/USN-6134-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6133-1 vom 2023-06-01",
        "url": "https://ubuntu.com/security/notices/USN-6133-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5951-1 vom 2023-03-14",
        "url": "https://ubuntu.com/security/notices/USN-5951-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5940-1 vom 2023-03-09",
        "url": "https://ubuntu.com/security/notices/USN-5940-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5939-1 vom 2023-03-08",
        "url": "https://ubuntu.com/security/notices/USN-5939-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5934-1 vom 2023-03-07",
        "url": "https://ubuntu.com/security/notices/USN-5934-1"
      },
      {
        "category": "external",
        "summary": "Android Security Bulletin - February 2023 vom 2023-02-06",
        "url": "https://source.android.com/docs/security/bulletin/2023-02-01"
      },
      {
        "category": "external",
        "summary": "Android Security Bulletin - February 2023 vom 2023-02-06",
        "url": "https://source.android.com/docs/security/bulletin/pixel/2023-02-01"
      }
    ],
    "source_lang": "en-US",
    "title": "Android Patchday Februar 2023",
    "tracking": {
      "current_release_date": "2023-06-01T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:43:05.659+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-0292",
      "initial_release_date": "2023-02-06T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-02-06T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-03-07T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-03-08T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-03-09T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-03-14T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-06-01T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "6"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Google Android 12L",
                "product": {
                  "name": "Google Android 12L",
                  "product_id": "1185256",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:google:android:12l"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Google Android 10",
                "product": {
                  "name": "Google Android 10",
                  "product_id": "T019174",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:google:android:10"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Google Android 11",
                "product": {
                  "name": "Google Android 11",
                  "product_id": "T019739",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:google:android:11"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Google Android 12",
                "product": {
                  "name": "Google Android 12",
                  "product_id": "T020881",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:google:android:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Google Android 13",
                "product": {
                  "name": "Google Android 13",
                  "product_id": "T024488",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:google:android:13"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Android"
          }
        ],
        "category": "vendor",
        "name": "Google"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-0850",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-0850"
    },
    {
      "cve": "CVE-2022-20443",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-20443"
    },
    {
      "cve": "CVE-2022-20455",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-20455"
    },
    {
      "cve": "CVE-2022-20481",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-20481"
    },
    {
      "cve": "CVE-2022-20551",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-20551"
    },
    {
      "cve": "CVE-2022-25711",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-25711"
    },
    {
      "cve": "CVE-2022-33221",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33221"
    },
    {
      "cve": "CVE-2022-33225",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33225"
    },
    {
      "cve": "CVE-2022-33232",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33232"
    },
    {
      "cve": "CVE-2022-33233",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33233"
    },
    {
      "cve": "CVE-2022-33243",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33243"
    },
    {
      "cve": "CVE-2022-33248",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33248"
    },
    {
      "cve": "CVE-2022-33271",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33271"
    },
    {
      "cve": "CVE-2022-33277",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33277"
    },
    {
      "cve": "CVE-2022-33280",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33280"
    },
    {
      "cve": "CVE-2022-33306",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-33306"
    },
    {
      "cve": "CVE-2022-34145",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-34145"
    },
    {
      "cve": "CVE-2022-34146",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-34146"
    },
    {
      "cve": "CVE-2022-39189",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-39189"
    },
    {
      "cve": "CVE-2022-39842",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-39842"
    },
    {
      "cve": "CVE-2022-40502",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-40502"
    },
    {
      "cve": "CVE-2022-40512",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-40512"
    },
    {
      "cve": "CVE-2022-40514",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-40514"
    },
    {
      "cve": "CVE-2022-41222",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-41222"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-47331",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-47331"
    },
    {
      "cve": "CVE-2022-47339",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2022-47339"
    },
    {
      "cve": "CVE-2023-20602",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20602"
    },
    {
      "cve": "CVE-2023-20932",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20932"
    },
    {
      "cve": "CVE-2023-20933",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20933"
    },
    {
      "cve": "CVE-2023-20934",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20934"
    },
    {
      "cve": "CVE-2023-20937",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20937"
    },
    {
      "cve": "CVE-2023-20938",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20938"
    },
    {
      "cve": "CVE-2023-20939",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20939"
    },
    {
      "cve": "CVE-2023-20940",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20940"
    },
    {
      "cve": "CVE-2023-20942",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20942"
    },
    {
      "cve": "CVE-2023-20943",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20943"
    },
    {
      "cve": "CVE-2023-20944",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20944"
    },
    {
      "cve": "CVE-2023-20945",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20945"
    },
    {
      "cve": "CVE-2023-20946",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20946"
    },
    {
      "cve": "CVE-2023-20948",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20948"
    },
    {
      "cve": "CVE-2023-20949",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Google Android bez\u00fcglich der Komponenten Framework, Media Framework, System, Google Play System Updates und Kernel. Ein Angreifer kann seine Privilegien erweitern, vertrauliche Informationen offenlegen und einen Denial-of-Service-Zustand verursachen. Dar\u00fcber hinaus existieren mehrere nicht spezifizierte Schwachstellen, die ein Angreifer mit unbekannten Auswirkungen ausnutzen kann. Betroffen sind die in Android verwendeten Komponenten der Hersteller MediaTek, Unisoc und Qualcomm. Das Ausnutzen dieser Schwachstellen erfordert eine Benutzeraktion, z. B. die Verwendung einer in b\u00f6ser Absicht erstellten App."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000126",
          "T019739",
          "1185256",
          "T019174",
          "T024488",
          "T020881"
        ]
      },
      "release_date": "2023-02-06T23:00:00.000+00:00",
      "title": "CVE-2023-20949"
    }
  ]
}

WID-SEC-W-2023-0561

Vulnerability from csaf_certbund - Published: 2023-03-02 23:00 - Updated: 2023-05-18 22:00

Summary

Xerox FreeFlow Print Server: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-21900

In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2023-21843

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2023-21835

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2023-21830

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46882

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46881

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46880

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46878

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46875

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46874

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-46872

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45421

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45420

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45419

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45418

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45417

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45416

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45415

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45414

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45413

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45412

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45411

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45410

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45409

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45408

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45407

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45406

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45405

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45404

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45403

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45063

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-45061

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-44638

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-43680

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-43548

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-42932

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-42929

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-42928

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-42927

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-42252

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-41556

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-41323

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40962

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40960

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40959

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40958

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40957

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40956

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-40674

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3970

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-39260

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-39253

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3786

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-37797

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-37454

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-37436

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-36760

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3627

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3626

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-36087

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-36059

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3602

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3599

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3598

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3597

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3570

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-35256

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-35255

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-34526

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3276

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-32222

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-32215

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-32213

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-32212

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3204

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3190

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-31630

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-31629

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-31628

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3155

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3034

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3033

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-3032

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-29458

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-29187

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-29154

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2869

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2868

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2867

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-27406

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-27405

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-27404

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26981

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-24765

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-24070

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23901

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22844

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2210

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2208

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2207

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2206

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2183

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2175

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21658

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21628

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21626

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21624

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21619

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2125

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2122

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2058

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2057

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-2056

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1925

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1924

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1923

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1922

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1921

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1920

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1348

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-1056

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0924

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0909

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0908

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0907

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0891

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0865

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0562

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0561

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-46848

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-46823

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-42694

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-42574

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-37750

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-28544

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-10735

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2019-6111

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2018-7160

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2015-20107

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2006-20001

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server v2 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v2`	—
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "FreeFlow-Druckserver ist eine Druckserveranwendung f\u00fcr Xerox-Produktionsdrucker, die Flexibilit\u00e4t, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0561 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0561.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0561 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0561"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-007 vom 2023-05-18",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/05/Xerox-Security-Bulletin-XRX23-007-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v7.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-005 vom 2023-04-04",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-002 vom 2023-03-23",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/03/Xerox-Security-Bulletin-XRX23-002-FreeFlow-Print-Server-v2_Windows10.pdf"
      },
      {
        "category": "external",
        "summary": "Xerox Mini Bulletin XRX21A vom 2023-03-02",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/03/Xerox-Security-Bulletin-XRX23-001-FreeFlow%C2%AE-Print-Server-v7.pdf"
      }
    ],
    "source_lang": "en-US",
    "title": "Xerox FreeFlow Print Server: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-05-18T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:46:07.359+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-0561",
      "initial_release_date": "2023-03-02T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-03-02T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-03-22T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2023-04-03T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2023-05-18T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von XEROX aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Xerox FreeFlow Print Server 7",
                "product": {
                  "name": "Xerox FreeFlow Print Server 7",
                  "product_id": "T000872",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Xerox FreeFlow Print Server 9",
                "product": {
                  "name": "Xerox FreeFlow Print Server 9",
                  "product_id": "T002977",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Xerox FreeFlow Print Server v2",
                "product": {
                  "name": "Xerox FreeFlow Print Server v2",
                  "product_id": "T014888",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-21900",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2023-21900"
    },
    {
      "cve": "CVE-2023-21843",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2023-21843"
    },
    {
      "cve": "CVE-2023-21835",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2023-21835"
    },
    {
      "cve": "CVE-2023-21830",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2023-21830"
    },
    {
      "cve": "CVE-2022-46882",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46882"
    },
    {
      "cve": "CVE-2022-46881",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46881"
    },
    {
      "cve": "CVE-2022-46880",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46880"
    },
    {
      "cve": "CVE-2022-46878",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46878"
    },
    {
      "cve": "CVE-2022-46875",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46875"
    },
    {
      "cve": "CVE-2022-46874",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46874"
    },
    {
      "cve": "CVE-2022-46872",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-46872"
    },
    {
      "cve": "CVE-2022-45421",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45421"
    },
    {
      "cve": "CVE-2022-45420",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45420"
    },
    {
      "cve": "CVE-2022-45419",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45419"
    },
    {
      "cve": "CVE-2022-45418",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45418"
    },
    {
      "cve": "CVE-2022-45417",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45417"
    },
    {
      "cve": "CVE-2022-45416",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45416"
    },
    {
      "cve": "CVE-2022-45415",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45415"
    },
    {
      "cve": "CVE-2022-45414",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45414"
    },
    {
      "cve": "CVE-2022-45413",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45413"
    },
    {
      "cve": "CVE-2022-45412",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45412"
    },
    {
      "cve": "CVE-2022-45411",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45411"
    },
    {
      "cve": "CVE-2022-45410",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45410"
    },
    {
      "cve": "CVE-2022-45409",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45409"
    },
    {
      "cve": "CVE-2022-45408",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45408"
    },
    {
      "cve": "CVE-2022-45407",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45407"
    },
    {
      "cve": "CVE-2022-45406",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45406"
    },
    {
      "cve": "CVE-2022-45405",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45405"
    },
    {
      "cve": "CVE-2022-45404",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45404"
    },
    {
      "cve": "CVE-2022-45403",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45403"
    },
    {
      "cve": "CVE-2022-45063",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45063"
    },
    {
      "cve": "CVE-2022-45061",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-45061"
    },
    {
      "cve": "CVE-2022-44638",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-44638"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-43548",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-43548"
    },
    {
      "cve": "CVE-2022-42932",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-42932"
    },
    {
      "cve": "CVE-2022-42929",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-42929"
    },
    {
      "cve": "CVE-2022-42928",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-42928"
    },
    {
      "cve": "CVE-2022-42927",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-42927"
    },
    {
      "cve": "CVE-2022-42252",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-42252"
    },
    {
      "cve": "CVE-2022-41556",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-41556"
    },
    {
      "cve": "CVE-2022-41323",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-41323"
    },
    {
      "cve": "CVE-2022-40962",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40962"
    },
    {
      "cve": "CVE-2022-40960",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40960"
    },
    {
      "cve": "CVE-2022-40959",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40959"
    },
    {
      "cve": "CVE-2022-40958",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40958"
    },
    {
      "cve": "CVE-2022-40957",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40957"
    },
    {
      "cve": "CVE-2022-40956",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40956"
    },
    {
      "cve": "CVE-2022-40674",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-40674"
    },
    {
      "cve": "CVE-2022-3970",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3970"
    },
    {
      "cve": "CVE-2022-39260",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-39260"
    },
    {
      "cve": "CVE-2022-39253",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-39253"
    },
    {
      "cve": "CVE-2022-3786",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3786"
    },
    {
      "cve": "CVE-2022-37797",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-37797"
    },
    {
      "cve": "CVE-2022-37454",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-37454"
    },
    {
      "cve": "CVE-2022-37436",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-37436"
    },
    {
      "cve": "CVE-2022-36760",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-36760"
    },
    {
      "cve": "CVE-2022-3627",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3627"
    },
    {
      "cve": "CVE-2022-3626",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3626"
    },
    {
      "cve": "CVE-2022-36087",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-36087"
    },
    {
      "cve": "CVE-2022-36059",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-36059"
    },
    {
      "cve": "CVE-2022-3602",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3602"
    },
    {
      "cve": "CVE-2022-3599",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3599"
    },
    {
      "cve": "CVE-2022-3598",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3598"
    },
    {
      "cve": "CVE-2022-3597",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3597"
    },
    {
      "cve": "CVE-2022-3570",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3570"
    },
    {
      "cve": "CVE-2022-35256",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-35256"
    },
    {
      "cve": "CVE-2022-35255",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-35255"
    },
    {
      "cve": "CVE-2022-34526",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-34526"
    },
    {
      "cve": "CVE-2022-3276",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3276"
    },
    {
      "cve": "CVE-2022-32222",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-32222"
    },
    {
      "cve": "CVE-2022-32215",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-32215"
    },
    {
      "cve": "CVE-2022-32213",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-32213"
    },
    {
      "cve": "CVE-2022-32212",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-32212"
    },
    {
      "cve": "CVE-2022-3204",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3204"
    },
    {
      "cve": "CVE-2022-3190",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3190"
    },
    {
      "cve": "CVE-2022-31630",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-31630"
    },
    {
      "cve": "CVE-2022-31629",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-31629"
    },
    {
      "cve": "CVE-2022-31628",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-31628"
    },
    {
      "cve": "CVE-2022-3155",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3155"
    },
    {
      "cve": "CVE-2022-3034",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3034"
    },
    {
      "cve": "CVE-2022-3033",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3033"
    },
    {
      "cve": "CVE-2022-3032",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-3032"
    },
    {
      "cve": "CVE-2022-29458",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-29458"
    },
    {
      "cve": "CVE-2022-29187",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-29187"
    },
    {
      "cve": "CVE-2022-29154",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-29154"
    },
    {
      "cve": "CVE-2022-2869",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2869"
    },
    {
      "cve": "CVE-2022-2868",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2868"
    },
    {
      "cve": "CVE-2022-2867",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2867"
    },
    {
      "cve": "CVE-2022-27406",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-27406"
    },
    {
      "cve": "CVE-2022-27405",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-27405"
    },
    {
      "cve": "CVE-2022-27404",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-27404"
    },
    {
      "cve": "CVE-2022-26981",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-26981"
    },
    {
      "cve": "CVE-2022-24765",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-24765"
    },
    {
      "cve": "CVE-2022-24070",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-24070"
    },
    {
      "cve": "CVE-2022-23901",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-23901"
    },
    {
      "cve": "CVE-2022-22844",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-22844"
    },
    {
      "cve": "CVE-2022-2210",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2210"
    },
    {
      "cve": "CVE-2022-2208",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2208"
    },
    {
      "cve": "CVE-2022-2207",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2207"
    },
    {
      "cve": "CVE-2022-2206",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2206"
    },
    {
      "cve": "CVE-2022-2183",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2183"
    },
    {
      "cve": "CVE-2022-2175",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2175"
    },
    {
      "cve": "CVE-2022-21658",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-21658"
    },
    {
      "cve": "CVE-2022-21628",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-21628"
    },
    {
      "cve": "CVE-2022-21626",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-21626"
    },
    {
      "cve": "CVE-2022-21624",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-21624"
    },
    {
      "cve": "CVE-2022-21619",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-21619"
    },
    {
      "cve": "CVE-2022-2125",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2125"
    },
    {
      "cve": "CVE-2022-2122",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2122"
    },
    {
      "cve": "CVE-2022-2058",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2058"
    },
    {
      "cve": "CVE-2022-2057",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2057"
    },
    {
      "cve": "CVE-2022-2056",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-2056"
    },
    {
      "cve": "CVE-2022-1925",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1925"
    },
    {
      "cve": "CVE-2022-1924",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1924"
    },
    {
      "cve": "CVE-2022-1923",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1923"
    },
    {
      "cve": "CVE-2022-1922",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1922"
    },
    {
      "cve": "CVE-2022-1921",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1921"
    },
    {
      "cve": "CVE-2022-1920",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1920"
    },
    {
      "cve": "CVE-2022-1348",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1348"
    },
    {
      "cve": "CVE-2022-1056",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-1056"
    },
    {
      "cve": "CVE-2022-0924",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0924"
    },
    {
      "cve": "CVE-2022-0909",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0909"
    },
    {
      "cve": "CVE-2022-0908",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0908"
    },
    {
      "cve": "CVE-2022-0907",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0907"
    },
    {
      "cve": "CVE-2022-0891",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0891"
    },
    {
      "cve": "CVE-2022-0865",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0865"
    },
    {
      "cve": "CVE-2022-0562",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0562"
    },
    {
      "cve": "CVE-2022-0561",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2022-0561"
    },
    {
      "cve": "CVE-2021-46848",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-46848"
    },
    {
      "cve": "CVE-2021-46823",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-46823"
    },
    {
      "cve": "CVE-2021-42694",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-42694"
    },
    {
      "cve": "CVE-2021-42574",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-42574"
    },
    {
      "cve": "CVE-2021-37750",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-37750"
    },
    {
      "cve": "CVE-2021-28544",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2021-28544"
    },
    {
      "cve": "CVE-2020-10735",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2020-10735"
    },
    {
      "cve": "CVE-2019-6111",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2019-6111"
    },
    {
      "cve": "CVE-2018-7160",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2018-7160"
    },
    {
      "cve": "CVE-2015-20107",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2015-20107"
    },
    {
      "cve": "CVE-2006-20001",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen im Zusammenhang mit bekannten Java, Apache und Mozilla Firefox Schwachstellen. Ein Angreifer kann diese ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T014888",
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2023-03-02T23:00:00.000+00:00",
      "title": "CVE-2006-20001"
    }
  ]
}

WID-SEC-W-2023-1017

Vulnerability from csaf_certbund - Published: 2023-04-18 22:00 - Updated: 2023-04-18 22:00

Summary

Oracle Financial Services Applications: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Financial Services ist eine Zusammenstellung von Anwendungen für den Finanzsektor und eine Technologiebasis zur Erfüllung von IT- und Geschäftsanforderungen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-28708

In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-25194

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-24998

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21915

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21908

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21907

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21906

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21905

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21904

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21903

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2023-21902

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-46908

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-46364

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-43680

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-42890

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-42889

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-42252

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-42003

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-41881

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-40146

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-38752

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-36033

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-34169

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-3171

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-29577

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-25647

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-24839

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-23437

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-22979

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-22978

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-22971

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2022-2048

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2021-43859

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2021-41184

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2021-36090

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2021-29425

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2020-11988

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

CVE-2019-12415

Affected products

Known affected 49 products

Product	Identifier	Version
Oracle Financial Services Applications 8.1.2.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4`	—
Oracle Financial Services Applications 8.1.2.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.3`	—
Oracle Financial Services Applications 22.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.2`	—
Oracle Financial Services Applications 2.9.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9.1`	—
Oracle Financial Services Applications 8.1.2.4.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.4.1`	—
Oracle Financial Services Applications 2.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.8`	—
Oracle Financial Services Applications 18.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.2`	—
Oracle Financial Services Applications 3.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.2`	—
Oracle Financial Services Applications 4.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:4.0`	—
Oracle Financial Services Applications 3.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.0`	—
Oracle Financial Services Applications 3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:3.1`	—
Oracle Financial Services Applications 11.10 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.10`	—
Oracle Financial Services Applications 8.1.1.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.0`	—
Oracle Financial Services Applications 8.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.0`	—
Oracle Financial Services Applications 8.1.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.0`	—
Oracle Financial Services Applications 11.8 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.8`	—
Oracle Financial Services Applications 8.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1`	—
Oracle Financial Services Applications 8.1.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.1`	—
Oracle Financial Services Applications 11.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.7`	—
Oracle Financial Services Applications 8.0.7.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.0`	—
Oracle Financial Services Applications 18.3 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:18.3`	—
Oracle Financial Services Applications 2.7.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7.1`	—
Oracle Financial Services Applications 8.1.1.1.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.7`	—
Oracle Financial Services Applications 8.0.7.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.0`	—
Oracle Financial Services Applications 11.11 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.11`	—
Oracle Financial Services Applications 8.0.7.1.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.1.2`	—
Oracle Financial Services Applications 8.0.8.0.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0.0`	—
Oracle Financial Services Applications 11.6 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:11.6`	—
Oracle Financial Services Applications 8.1.2.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2.1`	—
Oracle Financial Services Applications 8.0.7.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.3.1`	—
Oracle Financial Services Applications 8.0.8.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1.4`	—
Oracle Financial Services Applications 8.1.0.1.4 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.0.1.4`	—
Oracle Financial Services Applications 8.1.1.1.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.1.1`	—
Oracle Financial Services Applications 2.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.7`	—
Oracle Financial Services Applications 2.9 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:2.9`	—
Oracle Financial Services Applications 8.0.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.1`	—
Oracle Financial Services Applications 8.0.9.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.9.0`	—
Oracle Financial Services Applications 8.0.8.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.0`	—
Oracle Financial Services Applications 8.1.2.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.2.2`	—
Oracle Financial Services Applications 8.0.8.3.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.1`	—
Oracle Financial Services Applications 21.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:21.1`	—
Oracle Financial Services Applications 8.1.1.2.0 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.1.1.2.0`	—
Oracle Financial Services Applications 8.0.8.3.5 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.3.5`	—
Oracle Financial Services Applications 19.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.2`	—
Oracle Financial Services Applications 8.0.7.8.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.7.8.1`	—
Oracle Financial Services Applications 19.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:19.1`	—
Oracle Financial Services Applications 8.0.8.2.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2.1`	—
Oracle Financial Services Applications 22.1 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:22.1`	—
Oracle Financial Services Applications 8.0.8.2 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:8.0.8.2`	—

Last affected 1 product

Product	Identifier	Version	Remediation
Oracle Financial Services Applications <= 14.7 Oracle / Financial Services Applications	`cpe:/a:oracle:financial_services_applications:14.7`	—

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2023…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Financial Services ist eine Zusammenstellung  von Anwendungen f\u00fcr den Finanzsektor und eine Technologiebasis zur Erf\u00fcllung von IT- und Gesch\u00e4ftsanforderungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Financial Services Applications ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1017 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1017.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1017 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1017"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2023 - Appendix Oracle Financial Services Applications vom 2023-04-18",
        "url": "https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixIFLX"
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Financial Services Applications: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-04-18T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:49:16.791+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1017",
      "initial_release_date": "2023-04-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-04-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 2.7.1",
                "product": {
                  "name": "Oracle Financial Services Applications 2.7.1",
                  "product_id": "T018979",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 11.7",
                "product": {
                  "name": "Oracle Financial Services Applications 11.7",
                  "product_id": "T020695",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:11.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 11.8",
                "product": {
                  "name": "Oracle Financial Services Applications 11.8",
                  "product_id": "T020696",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:11.8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 11.10",
                "product": {
                  "name": "Oracle Financial Services Applications 11.10",
                  "product_id": "T020698",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:11.10"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 18.3",
                "product": {
                  "name": "Oracle Financial Services Applications 18.3",
                  "product_id": "T021669",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:18.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 19.1",
                "product": {
                  "name": "Oracle Financial Services Applications 19.1",
                  "product_id": "T021670",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:19.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 19.2",
                "product": {
                  "name": "Oracle Financial Services Applications 19.2",
                  "product_id": "T021671",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:19.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 21.1",
                "product": {
                  "name": "Oracle Financial Services Applications 21.1",
                  "product_id": "T021673",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:21.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.1.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.0",
                  "product_id": "T022833",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.0",
                  "product_id": "T022834",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.1.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.1",
                  "product_id": "T022835",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.9.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.9.0",
                  "product_id": "T022840",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.9.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.0",
                  "product_id": "T022841",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.1",
                  "product_id": "T022844",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.0.0",
                  "product_id": "T023923",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.1",
                  "product_id": "T023924",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.7.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.0",
                  "product_id": "T023925",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 2.7",
                "product": {
                  "name": "Oracle Financial Services Applications 2.7",
                  "product_id": "T023927",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 2.9",
                "product": {
                  "name": "Oracle Financial Services Applications 2.9",
                  "product_id": "T023928",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.2",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.2",
                  "product_id": "T024988",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.2",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.2",
                  "product_id": "T024990",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.3.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.3.1",
                  "product_id": "T025878",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.3.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications \u003c= 14.7",
                "product": {
                  "name": "Oracle Financial Services Applications \u003c= 14.7",
                  "product_id": "T027348",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:14.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 22.1",
                "product": {
                  "name": "Oracle Financial Services Applications 22.1",
                  "product_id": "T027349",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:22.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 22.2",
                "product": {
                  "name": "Oracle Financial Services Applications 22.2",
                  "product_id": "T027350",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:22.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.4",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.4",
                  "product_id": "T027351",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.3",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.3",
                  "product_id": "T027352",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 2.8",
                "product": {
                  "name": "Oracle Financial Services Applications 2.8",
                  "product_id": "T027353",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 18.2",
                "product": {
                  "name": "Oracle Financial Services Applications 18.2",
                  "product_id": "T027354",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:18.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.4.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.4.1",
                  "product_id": "T027358",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 2.9.1",
                "product": {
                  "name": "Oracle Financial Services Applications 2.9.1",
                  "product_id": "T027359",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:2.9.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 3.0",
                "product": {
                  "name": "Oracle Financial Services Applications 3.0",
                  "product_id": "T027360",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 3.1",
                "product": {
                  "name": "Oracle Financial Services Applications 3.1",
                  "product_id": "T027361",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 3.2",
                "product": {
                  "name": "Oracle Financial Services Applications 3.2",
                  "product_id": "T027362",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:3.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 4.0",
                "product": {
                  "name": "Oracle Financial Services Applications 4.0",
                  "product_id": "T027363",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.0.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.0.0",
                  "product_id": "T027364",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 11.6",
                "product": {
                  "name": "Oracle Financial Services Applications 11.6",
                  "product_id": "T027365",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:11.6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 11.11",
                "product": {
                  "name": "Oracle Financial Services Applications 11.11",
                  "product_id": "T027366",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:11.11"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.7.1.2",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.1.2",
                  "product_id": "T027367",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.1.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.1.1.7",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.1.7",
                  "product_id": "T027368",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.1.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.7.8.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.8.0",
                  "product_id": "T027369",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.8.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.1.1.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.1.1",
                  "product_id": "T027370",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.1.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.1.4",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.1.4",
                  "product_id": "T027371",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.1.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.0.1.4",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.0.1.4",
                  "product_id": "T027372",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.0.1.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.2.2.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.2.2.1",
                  "product_id": "T027373",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.2.2.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.7.3.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.3.1",
                  "product_id": "T027374",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.3.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.7.8.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.7.8.1",
                  "product_id": "T027375",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.7.8.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.2.1",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.2.1",
                  "product_id": "T027376",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.2.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.1.1.2.0",
                "product": {
                  "name": "Oracle Financial Services Applications 8.1.1.2.0",
                  "product_id": "T027377",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.1.1.2.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Financial Services Applications 8.0.8.3.5",
                "product": {
                  "name": "Oracle Financial Services Applications 8.0.8.3.5",
                  "product_id": "T027378",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:financial_services_applications:8.0.8.3.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Financial Services Applications"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-28708",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-28708"
    },
    {
      "cve": "CVE-2023-25194",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-25194"
    },
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-21915",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21915"
    },
    {
      "cve": "CVE-2023-21908",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21908"
    },
    {
      "cve": "CVE-2023-21907",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21907"
    },
    {
      "cve": "CVE-2023-21906",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21906"
    },
    {
      "cve": "CVE-2023-21905",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21905"
    },
    {
      "cve": "CVE-2023-21904",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21904"
    },
    {
      "cve": "CVE-2023-21903",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21903"
    },
    {
      "cve": "CVE-2023-21902",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21902"
    },
    {
      "cve": "CVE-2022-46908",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-46908"
    },
    {
      "cve": "CVE-2022-46364",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-46364"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-42890",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-42889",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42889"
    },
    {
      "cve": "CVE-2022-42252",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42252"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-41881",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-41881"
    },
    {
      "cve": "CVE-2022-40146",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-40146"
    },
    {
      "cve": "CVE-2022-38752",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-38752"
    },
    {
      "cve": "CVE-2022-36033",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-36033"
    },
    {
      "cve": "CVE-2022-34169",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-34169"
    },
    {
      "cve": "CVE-2022-3171",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-3171"
    },
    {
      "cve": "CVE-2022-29577",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-29577"
    },
    {
      "cve": "CVE-2022-25647",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-25647"
    },
    {
      "cve": "CVE-2022-24839",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-24839"
    },
    {
      "cve": "CVE-2022-23437",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-23437"
    },
    {
      "cve": "CVE-2022-22979",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-22979"
    },
    {
      "cve": "CVE-2022-22978",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-22978"
    },
    {
      "cve": "CVE-2022-22971",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-22971"
    },
    {
      "cve": "CVE-2022-2048",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-2048"
    },
    {
      "cve": "CVE-2021-43859",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-43859"
    },
    {
      "cve": "CVE-2021-41184",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-36090",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-36090"
    },
    {
      "cve": "CVE-2021-29425",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-29425"
    },
    {
      "cve": "CVE-2020-11988",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-11988"
    },
    {
      "cve": "CVE-2019-12415",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Financial Services Applications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T027351",
          "T027352",
          "T027350",
          "T027359",
          "T027358",
          "T027353",
          "T027354",
          "T027362",
          "T027363",
          "T027360",
          "T027361",
          "T020698",
          "T022833",
          "T022834",
          "T023923",
          "T020696",
          "T022835",
          "T023924",
          "T020695",
          "T023925",
          "T021669",
          "T018979",
          "T027368",
          "T027369",
          "T027366",
          "T027367",
          "T027364",
          "T027365",
          "T027373",
          "T027374",
          "T027371",
          "T027372",
          "T027370",
          "T023927",
          "T023928",
          "T022844",
          "T022840",
          "T022841",
          "T024988",
          "T025878",
          "T021673",
          "T027377",
          "T027378",
          "T021671",
          "T027375",
          "T021670",
          "T027376",
          "T027349",
          "T024990"
        ],
        "last_affected": [
          "T027348"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2019-12415"
    }
  ]
}

WID-SEC-W-2023-1350

Vulnerability from csaf_certbund - Published: 2023-06-01 22:00 - Updated: 2025-11-18 23:00

Summary

Splunk Splunk Enterprise: Mehrere Schwachstellen in Komponenten von Drittanbietern

Severity

Mittel

Notes

Produktbeschreibung: Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise in diversen Komponenten von Drittanbietern ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2017-16042

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2018-25032

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-10744

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-10746

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2019-20149

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-13822

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-15138

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-28469

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7662

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7753

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-7774

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8116

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8169

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8177

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8203

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8231

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8284

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8285

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2020-8286

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-20095

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22876

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22890

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22897

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22898

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22901

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22922

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22923

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22924

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22925

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22926

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22945

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22946

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-22947

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23343

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23368

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-23382

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-27292

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-29060

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-31566

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33502

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33503

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-33587

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3520

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-36976

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-3803

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2021-43565

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1705

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-1962

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-22576

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23491

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23772

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23773

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-23806

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24675

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24921

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-24999

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-25858

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27191

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27664

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27774

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27775

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27776

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27778

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27779

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27780

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27781

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-27782

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28131

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-28327

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2879

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-2880

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29526

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-29804

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30115

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30580

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30629

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30630

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30631

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30632

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30633

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30634

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-30635

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-31129

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32148

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32189

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32205

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32206

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32207

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32208

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-32221

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-33987

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-3517

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35252

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35260

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-35737

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-36227

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37434

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37599

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37601

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37603

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-37616

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-38900

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40023

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40303

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-40304

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41715

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41716

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-41720

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-4200

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42004

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42915

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-42916

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-4304

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43551

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43552

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-43680

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2022-46175

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-0215

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-0286

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-1370

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23914

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23915

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-23916

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27533

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27534

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27535

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27536

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27537

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

CVE-2023-27538

Affected products

Known affected 9 products

Product	Identifier	Version
Splunk Splunk Enterprise <9.0.5 Splunk / Splunk Enterprise		<9.0.5
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Splunk Splunk Enterprise <8.1.14 Splunk / Splunk Enterprise		<8.1.14
Splunk Splunk Enterprise <8.2.11 Splunk / Splunk Enterprise		<8.2.11
Atlassian Confluence <10.1.1 Atlassian / Confluence		<10.1.1
IBM DB2 IBM	`cpe:/a:ibm:db2:-`	—
Atlassian Confluence <10.0.2 Atlassian / Confluence		<10.0.2
Atlassian Confluence <8.5.25 Atlassian / Confluence		<8.5.25
Atlassian Confluence <9.2.7 Atlassian / Confluence		<9.2.7

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://advisory.splunk.com/advisories/SVD-2023-0613	external
https://www.ibm.com/support/pages/node/7008449	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Splunk Enterprise erm\u00f6glicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise in diversen Komponenten von Drittanbietern ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1350 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1350.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1350 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1350"
      },
      {
        "category": "external",
        "summary": "Splunk Enterprise Security Advisory SVD-2023-0613 vom 2023-06-01",
        "url": "https://advisory.splunk.com/advisories/SVD-2023-0613"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7008449 vom 2023-06-29",
        "url": "https://www.ibm.com/support/pages/node/7008449"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0196-1 vom 2024-01-23",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017743.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0487-1 vom 2024-02-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017931.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0486-1 vom 2024-02-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017932.html"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Splunk Splunk Enterprise: Mehrere Schwachstellen in Komponenten von Drittanbietern",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:42:52.592+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2023-1350",
      "initial_release_date": "2023-06-01T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-06-01T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-06-29T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-01-23T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-02-15T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.1",
                "product": {
                  "name": "Atlassian Confluence \u003c10.1.1",
                  "product_id": "T048680"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.1",
                "product": {
                  "name": "Atlassian Confluence 10.1.1",
                  "product_id": "T048680-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.1.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Confluence \u003c10.0.2",
                  "product_id": "T048685"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Confluence 10.0.2",
                  "product_id": "T048685-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.7",
                "product": {
                  "name": "Atlassian Confluence \u003c9.2.7",
                  "product_id": "T048686"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.7",
                "product": {
                  "name": "Atlassian Confluence 9.2.7",
                  "product_id": "T048686-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:9.2.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.5.25",
                "product": {
                  "name": "Atlassian Confluence \u003c8.5.25",
                  "product_id": "T048687"
                }
              },
              {
                "category": "product_version",
                "name": "8.5.25",
                "product": {
                  "name": "Atlassian Confluence 8.5.25",
                  "product_id": "T048687-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:confluence:8.5.25"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Confluence"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM DB2",
            "product": {
              "name": "IBM DB2",
              "product_id": "5104",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:db2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.1.14",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c8.1.14",
                  "product_id": "T027935"
                }
              },
              {
                "category": "product_version",
                "name": "8.1.14",
                "product": {
                  "name": "Splunk Splunk Enterprise 8.1.14",
                  "product_id": "T027935-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:8.1.14"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.2.11",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c8.2.11",
                  "product_id": "T027936"
                }
              },
              {
                "category": "product_version",
                "name": "8.2.11",
                "product": {
                  "name": "Splunk Splunk Enterprise 8.2.11",
                  "product_id": "T027936-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:8.2.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.0.5",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.0.5",
                  "product_id": "T027937"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.5",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.0.5",
                  "product_id": "T027937-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.0.5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Splunk Enterprise"
          }
        ],
        "category": "vendor",
        "name": "Splunk"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-16042",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2017-16042"
    },
    {
      "cve": "CVE-2018-25032",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2019-10744",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-10744"
    },
    {
      "cve": "CVE-2019-10746",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-10746"
    },
    {
      "cve": "CVE-2019-20149",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2019-20149"
    },
    {
      "cve": "CVE-2020-13822",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-13822"
    },
    {
      "cve": "CVE-2020-15138",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-15138"
    },
    {
      "cve": "CVE-2020-28469",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-28469"
    },
    {
      "cve": "CVE-2020-7662",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7662"
    },
    {
      "cve": "CVE-2020-7753",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7753"
    },
    {
      "cve": "CVE-2020-7774",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-7774"
    },
    {
      "cve": "CVE-2020-8116",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8116"
    },
    {
      "cve": "CVE-2020-8169",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8169"
    },
    {
      "cve": "CVE-2020-8177",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8177"
    },
    {
      "cve": "CVE-2020-8203",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8203"
    },
    {
      "cve": "CVE-2020-8231",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8231"
    },
    {
      "cve": "CVE-2020-8284",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8284"
    },
    {
      "cve": "CVE-2020-8285",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8285"
    },
    {
      "cve": "CVE-2020-8286",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2020-8286"
    },
    {
      "cve": "CVE-2021-20095",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-20095"
    },
    {
      "cve": "CVE-2021-22876",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22876"
    },
    {
      "cve": "CVE-2021-22890",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22890"
    },
    {
      "cve": "CVE-2021-22897",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22897"
    },
    {
      "cve": "CVE-2021-22898",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22898"
    },
    {
      "cve": "CVE-2021-22901",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22901"
    },
    {
      "cve": "CVE-2021-22922",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22922"
    },
    {
      "cve": "CVE-2021-22923",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22923"
    },
    {
      "cve": "CVE-2021-22924",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22924"
    },
    {
      "cve": "CVE-2021-22925",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22925"
    },
    {
      "cve": "CVE-2021-22926",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22926"
    },
    {
      "cve": "CVE-2021-22945",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22945"
    },
    {
      "cve": "CVE-2021-22946",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22946"
    },
    {
      "cve": "CVE-2021-22947",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-22947"
    },
    {
      "cve": "CVE-2021-23343",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23343"
    },
    {
      "cve": "CVE-2021-23368",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23368"
    },
    {
      "cve": "CVE-2021-23382",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-23382"
    },
    {
      "cve": "CVE-2021-27292",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-27292"
    },
    {
      "cve": "CVE-2021-29060",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-29060"
    },
    {
      "cve": "CVE-2021-31566",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-31566"
    },
    {
      "cve": "CVE-2021-33502",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33502"
    },
    {
      "cve": "CVE-2021-33503",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33503"
    },
    {
      "cve": "CVE-2021-33587",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-33587"
    },
    {
      "cve": "CVE-2021-3520",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-3520"
    },
    {
      "cve": "CVE-2021-36976",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-36976"
    },
    {
      "cve": "CVE-2021-3803",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-3803"
    },
    {
      "cve": "CVE-2021-43565",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2021-43565"
    },
    {
      "cve": "CVE-2022-1705",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-1705"
    },
    {
      "cve": "CVE-2022-1962",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-1962"
    },
    {
      "cve": "CVE-2022-22576",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-22576"
    },
    {
      "cve": "CVE-2022-23491",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23491"
    },
    {
      "cve": "CVE-2022-23772",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-24675",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24675"
    },
    {
      "cve": "CVE-2022-24921",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24921"
    },
    {
      "cve": "CVE-2022-24999",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-24999"
    },
    {
      "cve": "CVE-2022-25858",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-25858"
    },
    {
      "cve": "CVE-2022-27191",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27191"
    },
    {
      "cve": "CVE-2022-27664",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27664"
    },
    {
      "cve": "CVE-2022-27774",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27774"
    },
    {
      "cve": "CVE-2022-27775",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27775"
    },
    {
      "cve": "CVE-2022-27776",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27776"
    },
    {
      "cve": "CVE-2022-27778",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27778"
    },
    {
      "cve": "CVE-2022-27779",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27779"
    },
    {
      "cve": "CVE-2022-27780",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27780"
    },
    {
      "cve": "CVE-2022-27781",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27781"
    },
    {
      "cve": "CVE-2022-27782",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-27782"
    },
    {
      "cve": "CVE-2022-28131",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-28131"
    },
    {
      "cve": "CVE-2022-28327",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-28327"
    },
    {
      "cve": "CVE-2022-2879",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-2879"
    },
    {
      "cve": "CVE-2022-2880",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-2880"
    },
    {
      "cve": "CVE-2022-29526",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-29526"
    },
    {
      "cve": "CVE-2022-29804",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-29804"
    },
    {
      "cve": "CVE-2022-30115",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30115"
    },
    {
      "cve": "CVE-2022-30580",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30580"
    },
    {
      "cve": "CVE-2022-30629",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30629"
    },
    {
      "cve": "CVE-2022-30630",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30630"
    },
    {
      "cve": "CVE-2022-30631",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30631"
    },
    {
      "cve": "CVE-2022-30632",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30632"
    },
    {
      "cve": "CVE-2022-30633",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30633"
    },
    {
      "cve": "CVE-2022-30634",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30634"
    },
    {
      "cve": "CVE-2022-30635",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-30635"
    },
    {
      "cve": "CVE-2022-31129",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-31129"
    },
    {
      "cve": "CVE-2022-32148",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32148"
    },
    {
      "cve": "CVE-2022-32189",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32189"
    },
    {
      "cve": "CVE-2022-32205",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32205"
    },
    {
      "cve": "CVE-2022-32206",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32206"
    },
    {
      "cve": "CVE-2022-32207",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32207"
    },
    {
      "cve": "CVE-2022-32208",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32208"
    },
    {
      "cve": "CVE-2022-32221",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-32221"
    },
    {
      "cve": "CVE-2022-33987",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-33987"
    },
    {
      "cve": "CVE-2022-3517",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-3517"
    },
    {
      "cve": "CVE-2022-35252",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35252"
    },
    {
      "cve": "CVE-2022-35260",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35260"
    },
    {
      "cve": "CVE-2022-35737",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-35737"
    },
    {
      "cve": "CVE-2022-36227",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-36227"
    },
    {
      "cve": "CVE-2022-37434",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-37599",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37599"
    },
    {
      "cve": "CVE-2022-37601",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37601"
    },
    {
      "cve": "CVE-2022-37603",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37603"
    },
    {
      "cve": "CVE-2022-37616",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-37616"
    },
    {
      "cve": "CVE-2022-38900",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-38900"
    },
    {
      "cve": "CVE-2022-40023",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40023"
    },
    {
      "cve": "CVE-2022-40303",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40303"
    },
    {
      "cve": "CVE-2022-40304",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-41715",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41715"
    },
    {
      "cve": "CVE-2022-41716",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41716"
    },
    {
      "cve": "CVE-2022-41720",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-41720"
    },
    {
      "cve": "CVE-2022-4200",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-4200"
    },
    {
      "cve": "CVE-2022-42004",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42004"
    },
    {
      "cve": "CVE-2022-42915",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42915"
    },
    {
      "cve": "CVE-2022-42916",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-42916"
    },
    {
      "cve": "CVE-2022-4304",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-4304"
    },
    {
      "cve": "CVE-2022-43551",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43551"
    },
    {
      "cve": "CVE-2022-43552",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43552"
    },
    {
      "cve": "CVE-2022-43680",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-46175",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-46175"
    },
    {
      "cve": "CVE-2023-0215",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-0215"
    },
    {
      "cve": "CVE-2023-0286",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-0286"
    },
    {
      "cve": "CVE-2023-1370",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2023-23914",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23914"
    },
    {
      "cve": "CVE-2023-23915",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23915"
    },
    {
      "cve": "CVE-2023-23916",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-23916"
    },
    {
      "cve": "CVE-2023-27533",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27533"
    },
    {
      "cve": "CVE-2023-27534",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27534"
    },
    {
      "cve": "CVE-2023-27535",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27535"
    },
    {
      "cve": "CVE-2023-27536",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27536"
    },
    {
      "cve": "CVE-2023-27537",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27537"
    },
    {
      "cve": "CVE-2023-27538",
      "product_status": {
        "known_affected": [
          "T027937",
          "T002207",
          "T027935",
          "T027936",
          "T048680",
          "5104",
          "T048685",
          "T048687",
          "T048686"
        ]
      },
      "release_date": "2023-06-01T22:00:00.000+00:00",
      "title": "CVE-2023-27538"
    }
  ]
}

WID-SEC-W-2023-1542

Vulnerability from csaf_certbund - Published: 2023-06-22 22:00 - Updated: 2025-11-18 23:00

Summary

Red Hat OpenShift: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Zustand herbeizuführen, Informationen offenzulegen, Dateien zu manipulieren oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Linux

CVE-2015-20107

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2018-25032

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2020-10735

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2020-16250

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2020-16251

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2020-17049

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-28861

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-3765

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-3807

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-4231

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-4235

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-4238

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-43519

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-43998

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-44531

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-44532

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-44533

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-44964

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-46828

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2021-46848

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-0670

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-1271

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-1304

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-1348

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-1586

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-1587

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-21824

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-2309

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-23540

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-23541

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-24903

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-2509

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-26280

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-27664

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-2795

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-2879

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-2880

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-28805

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-29154

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-30635

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3094

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-31129

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-32189

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-32190

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-33099

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3358

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-34903

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3515

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3517

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-35737

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-36227

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3715

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3736

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-37434

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-38149

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3821

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-38900

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-3924

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-40023

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-40303

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-40304

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-40897

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41316

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41715

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41717

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41723

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41724

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-41725

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-42010

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-42011

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-42012

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-42898

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-42919

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-43680

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-4415

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-45061

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-45873

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-46175

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-47024

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-47629

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-48303

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-48337

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-48338

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2022-48339

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-0361

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-0620

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-0665

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-22809

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-24329

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-2491

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-24999

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-25000

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2023-25136

Affected products

Known affected 19 products

Product	Identifier	Version
Meinberg LANTIME <7.08.007 Meinberg / LANTIME		<7.08.007
Red Hat OpenShift Data Foundation <4.12.10 Red Hat / OpenShift		Data Foundation <4.12.10
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat Enterprise Linux Service Interconnect 1 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:service_interconnect_1`	Service Interconnect 1
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat OpenShift Container Platform <4.12.46 Red Hat / OpenShift		Container Platform <4.12.46
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.12.22 Red Hat / OpenShift		Container Platform <4.12.22
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Container Platform <4.13.4 Red Hat / OpenShift		Container Platform <4.13.4
Red Hat OpenShift Container Platform <4.14.0 Red Hat / OpenShift		Container Platform <4.14.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Red Hat OpenShift Data Foundation <4.13.0 Red Hat / OpenShift		Data Foundation <4.13.0
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

References

53 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2023:3742	external
https://access.redhat.com/errata/RHSA-2023:3614	external
https://access.redhat.com/errata/RHSA-2023:3615	external
https://access.redhat.com/errata/RHSA-2023:3613	external
https://access.redhat.com/errata/RHSA-2023:3918	external
https://access.redhat.com/errata/RHSA-2023:3943	external
https://access.redhat.com/errata/RHSA-2023:3910	external
https://access.redhat.com/errata/RHSA-2023:3915	external
https://access.redhat.com/errata/RHSA-2023:3925	external
https://access.redhat.com/errata/RHSA-2023:4003	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://access.redhat.com/errata/RHSA-2023:4025	external
https://access.redhat.com/errata/RHSA-2023:4112	external
https://access.redhat.com/errata/RHSA-2023:4113	external
https://access.redhat.com/errata/RHSA-2023:4114	external
https://access.redhat.com/errata/RHSA-2023:4053	external
https://access.redhat.com/errata/RHSA-2023:4204	external
https://access.redhat.com/errata/RHSA-2023:4090	external
https://access.redhat.com/errata/RHSA-2023:4241	external
https://access.redhat.com/errata/RHSA-2023:4238	external
https://access.redhat.com/errata/RHSA-2023:4093	external
https://access.redhat.com/errata/RHSA-2023:4091	external
https://access.redhat.com/errata/RHSA-2023:4225	external
https://access.redhat.com/errata/RHSA-2023:4226	external
https://access.redhat.com/errata/RHSA-2023:4470	external
https://access.redhat.com/errata/RHSA-2023:4335	external
https://access.redhat.com/errata/RHSA-2023:4674	external
https://access.redhat.com/errata/RHSA-2023:4983	external
https://access.redhat.com/errata/RHSA-2023:5103	external
https://access.redhat.com/errata/RHSA-2023:5233	external
https://access.redhat.com/errata/RHSA-2023:5314	external
https://access.redhat.com/errata/RHSA-2023:6316	external
https://access.redhat.com/errata/RHSA-2023:7058	external
https://linux.oracle.com/errata/ELSA-2023-6939.html	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://access.redhat.com/errata/RHSA-2023:7672	external
https://access.redhat.com/errata/RHSA-2023:7820	external
https://access.redhat.com/errata/RHSA-2023:5006	external
https://access.redhat.com/errata/RHSA-2023:7823	external
https://access.redhat.com/errata/RHSA-2024:0139	external
https://access.redhat.com/errata/RHSA-2024:0143	external
https://access.redhat.com/errata/RHSA-2024:0137	external
https://access.redhat.com/errata/RHSA-2024:0121	external
https://www.meinberg.de/german/news/meinberg-secu…	external
https://security.gentoo.org/glsa/202405-04	external
https://access.redhat.com/errata/RHSA-2024:2987	external
https://access.redhat.com/errata/RHSA-2024:3254	external
https://access.redhat.com/errata/RHSA-2024:4631	external
https://access.redhat.com/errata/RHSA-2025:19094	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1542 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1542.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1542 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1542"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3742 vom 2023-06-22",
        "url": "https://access.redhat.com/errata/RHSA-2023:3742"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3612 vom 2023-06-23",
        "url": "https://access.redhat.com/errata/RHSA-2023:3614"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3615 vom 2023-06-22",
        "url": "https://access.redhat.com/errata/RHSA-2023:3615"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3613 vom 2023-06-27",
        "url": "https://access.redhat.com/errata/RHSA-2023:3613"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2023-06-29",
        "url": "https://access.redhat.com/errata/RHSA-2023:3918"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3943 vom 2023-06-29",
        "url": "https://access.redhat.com/errata/RHSA-2023:3943"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3910 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3910"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3915 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3915"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3925 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3925"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4003 vom 2023-07-10",
        "url": "https://access.redhat.com/errata/RHSA-2023:4003"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2023-6CFE7492C1 vom 2023-07-16",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-6cfe7492c1"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2023-AA7C75ED4A vom 2023-07-16",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-aa7c75ed4a"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4025 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4025"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4112 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4112"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4113 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4113"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4114 vom 2023-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:4114"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4053 vom 2023-07-19",
        "url": "https://access.redhat.com/errata/RHSA-2023:4053"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4204 vom 2023-07-19",
        "url": "https://access.redhat.com/errata/RHSA-2023:4204"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4090 vom 2023-07-21",
        "url": "https://access.redhat.com/errata/RHSA-2023:4090"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4241 vom 2023-07-21",
        "url": "https://access.redhat.com/errata/RHSA-2023:4241"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4238 vom 2023-07-20",
        "url": "https://access.redhat.com/errata/RHSA-2023:4238"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4093 vom 2023-07-20",
        "url": "https://access.redhat.com/errata/RHSA-2023:4093"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4091 vom 2023-07-20",
        "url": "https://access.redhat.com/errata/RHSA-2023:4091"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4225 vom 2023-07-27",
        "url": "https://access.redhat.com/errata/RHSA-2023:4225"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4226 vom 2023-07-27",
        "url": "https://access.redhat.com/errata/RHSA-2023:4226"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4470 vom 2023-08-03",
        "url": "https://access.redhat.com/errata/RHSA-2023:4470"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4335 vom 2023-08-08",
        "url": "https://access.redhat.com/errata/RHSA-2023:4335"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4674 vom 2023-08-23",
        "url": "https://access.redhat.com/errata/RHSA-2023:4674"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4983 vom 2023-09-05",
        "url": "https://access.redhat.com/errata/RHSA-2023:4983"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5103 vom 2023-09-12",
        "url": "https://access.redhat.com/errata/RHSA-2023:5103"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5233 vom 2023-09-19",
        "url": "https://access.redhat.com/errata/RHSA-2023:5233"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5314 vom 2023-09-20",
        "url": "https://access.redhat.com/errata/RHSA-2023:5314"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6316 vom 2023-11-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:6316"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7058 vom 2023-11-15",
        "url": "https://access.redhat.com/errata/RHSA-2023:7058"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-6939 vom 2023-11-21",
        "url": "https://linux.oracle.com/errata/ELSA-2023-6939.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2023-14A33318B8 vom 2023-12-03",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-14a33318b8"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7672 vom 2023-12-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:7672"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7820 vom 2023-12-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:7820"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5006 vom 2023-12-30",
        "url": "https://access.redhat.com/errata/RHSA-2023:5006"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7823 vom 2024-01-05",
        "url": "https://access.redhat.com/errata/RHSA-2023:7823"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0139 vom 2024-01-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:0139"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0143 vom 2024-01-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:0143"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0137 vom 2024-01-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:0137"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0121 vom 2024-01-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:0121"
      },
      {
        "category": "external",
        "summary": "Meinberg Security Advisory",
        "url": "https://www.meinberg.de/german/news/meinberg-security-advisory-mbgsa-2024-01-lantime-firmware-v7-08-007.htm"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202405-04 vom 2024-05-04",
        "url": "https://security.gentoo.org/glsa/202405-04"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2987 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2987"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3254 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:3254"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4631 vom 2024-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2024:4631"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:19094 vom 2025-10-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:19094"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:42:39.445+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2023-1542",
      "initial_release_date": "2023-06-22T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-06-22T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-06-25T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-26T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-28T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-29T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-05T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-06T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-10T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-16T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2023-07-17T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-18T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-20T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-26T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-03T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-07T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-23T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-05T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-12T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-19T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-20T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-11-07T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-11-14T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-11-21T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-12-03T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2023-12-06T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-12-13T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-01-01T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-01-04T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-01-10T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-01-30T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Meinberg aufgenommen"
        },
        {
          "date": "2024-05-05T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2024-05-21T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-18T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "35"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket \u003c10.0.2",
                  "product_id": "T048675"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket 10.0.2",
                  "product_id": "T048675-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c8.19.25 (LTS)",
                  "product_id": "T048676"
                }
              },
              {
                "category": "product_version",
                "name": "8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 8.19.25 (LTS)",
                  "product_id": "T048676-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.19.25_%28lts%29"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c9.4.13 (LTS)",
                  "product_id": "T048677"
                }
              },
              {
                "category": "product_version",
                "name": "9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 9.4.13 (LTS)",
                  "product_id": "T048677-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:9.4.13_%28lts%29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.08.007",
                "product": {
                  "name": "Meinberg LANTIME \u003c7.08.007",
                  "product_id": "T032435"
                }
              },
              {
                "category": "product_version",
                "name": "7.08.007",
                "product": {
                  "name": "Meinberg LANTIME 7.08.007",
                  "product_id": "T032435-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:meinberg:lantime:7.08.007"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "LANTIME"
          }
        ],
        "category": "vendor",
        "name": "Meinberg"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Advanced Cluster Security for Kubernetes 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
                  "product_id": "T027916",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Service Interconnect 1",
                "product": {
                  "name": "Red Hat Enterprise Linux Service Interconnect 1",
                  "product_id": "T028472",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:service_interconnect_1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift",
                "product": {
                  "name": "Red Hat OpenShift",
                  "product_id": "T008027",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12",
                  "product_id": "T026435",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_4.12"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.13.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.13.4",
                  "product_id": "T028225"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.13.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.13.4",
                  "product_id": "T028225-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.13.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Foundation \u003c4.13.0",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation \u003c4.13.0",
                  "product_id": "T028289"
                }
              },
              {
                "category": "product_version",
                "name": "Data Foundation 4.13.0",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation 4.13.0",
                  "product_id": "T028289-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:data_foundation_4.13.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.12.22",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.12.22",
                  "product_id": "T028307"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12.22",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12.22",
                  "product_id": "T028307-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.12.22"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.11.44",
                  "product_id": "T028416"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11.44",
                  "product_id": "T028416-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.11.44"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Foundation \u003c4.12.10",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation \u003c4.12.10",
                  "product_id": "T031698"
                }
              },
              {
                "category": "product_version",
                "name": "Data Foundation 4.12.10",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation 4.12.10",
                  "product_id": "T031698-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:data_foundation__4.12.10"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.14.0",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.14.0",
                  "product_id": "T031839"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.14.0",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.14.0",
                  "product_id": "T031839-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.14.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.12.46",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.12.46",
                  "product_id": "T031870"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12.46",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12.46",
                  "product_id": "T031870-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.12.46"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-20107",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2015-20107"
    },
    {
      "cve": "CVE-2018-25032",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2020-10735",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2020-10735"
    },
    {
      "cve": "CVE-2020-16250",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2020-16250"
    },
    {
      "cve": "CVE-2020-16251",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2020-16251"
    },
    {
      "cve": "CVE-2020-17049",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2020-17049"
    },
    {
      "cve": "CVE-2021-28861",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-28861"
    },
    {
      "cve": "CVE-2021-3765",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-3765"
    },
    {
      "cve": "CVE-2021-3807",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-3807"
    },
    {
      "cve": "CVE-2021-4231",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-4231"
    },
    {
      "cve": "CVE-2021-4235",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-4235"
    },
    {
      "cve": "CVE-2021-4238",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-4238"
    },
    {
      "cve": "CVE-2021-43519",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-43519"
    },
    {
      "cve": "CVE-2021-43998",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-43998"
    },
    {
      "cve": "CVE-2021-44531",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-44531"
    },
    {
      "cve": "CVE-2021-44532",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-44532"
    },
    {
      "cve": "CVE-2021-44533",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-44533"
    },
    {
      "cve": "CVE-2021-44964",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-44964"
    },
    {
      "cve": "CVE-2021-46828",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-46828"
    },
    {
      "cve": "CVE-2021-46848",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2021-46848"
    },
    {
      "cve": "CVE-2022-0670",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-0670"
    },
    {
      "cve": "CVE-2022-1271",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-1271"
    },
    {
      "cve": "CVE-2022-1304",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-1304"
    },
    {
      "cve": "CVE-2022-1348",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-1348"
    },
    {
      "cve": "CVE-2022-1586",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-1586"
    },
    {
      "cve": "CVE-2022-1587",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-1587"
    },
    {
      "cve": "CVE-2022-21824",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-21824"
    },
    {
      "cve": "CVE-2022-2309",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-2309"
    },
    {
      "cve": "CVE-2022-23540",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-23540"
    },
    {
      "cve": "CVE-2022-23541",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-23541"
    },
    {
      "cve": "CVE-2022-24903",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-24903"
    },
    {
      "cve": "CVE-2022-2509",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-2509"
    },
    {
      "cve": "CVE-2022-26280",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-26280"
    },
    {
      "cve": "CVE-2022-27664",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-27664"
    },
    {
      "cve": "CVE-2022-2795",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-2795"
    },
    {
      "cve": "CVE-2022-2879",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-2879"
    },
    {
      "cve": "CVE-2022-2880",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-2880"
    },
    {
      "cve": "CVE-2022-28805",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-28805"
    },
    {
      "cve": "CVE-2022-29154",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-29154"
    },
    {
      "cve": "CVE-2022-30635",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-30635"
    },
    {
      "cve": "CVE-2022-3094",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3094"
    },
    {
      "cve": "CVE-2022-31129",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-31129"
    },
    {
      "cve": "CVE-2022-32189",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-32189"
    },
    {
      "cve": "CVE-2022-32190",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-32190"
    },
    {
      "cve": "CVE-2022-33099",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-33099"
    },
    {
      "cve": "CVE-2022-3358",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3358"
    },
    {
      "cve": "CVE-2022-34903",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-34903"
    },
    {
      "cve": "CVE-2022-3515",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3515"
    },
    {
      "cve": "CVE-2022-3517",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3517"
    },
    {
      "cve": "CVE-2022-35737",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-35737"
    },
    {
      "cve": "CVE-2022-36227",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-36227"
    },
    {
      "cve": "CVE-2022-3715",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3715"
    },
    {
      "cve": "CVE-2022-3736",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3736"
    },
    {
      "cve": "CVE-2022-37434",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-38149",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-38149"
    },
    {
      "cve": "CVE-2022-3821",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3821"
    },
    {
      "cve": "CVE-2022-38900",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-38900"
    },
    {
      "cve": "CVE-2022-3924",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-3924"
    },
    {
      "cve": "CVE-2022-40023",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-40023"
    },
    {
      "cve": "CVE-2022-40303",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-40303"
    },
    {
      "cve": "CVE-2022-40304",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-40897",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-40897"
    },
    {
      "cve": "CVE-2022-41316",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41316"
    },
    {
      "cve": "CVE-2022-41715",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41715"
    },
    {
      "cve": "CVE-2022-41717",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41717"
    },
    {
      "cve": "CVE-2022-41723",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41723"
    },
    {
      "cve": "CVE-2022-41724",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41724"
    },
    {
      "cve": "CVE-2022-41725",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-41725"
    },
    {
      "cve": "CVE-2022-42010",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-42010"
    },
    {
      "cve": "CVE-2022-42011",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-42011"
    },
    {
      "cve": "CVE-2022-42012",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-42012"
    },
    {
      "cve": "CVE-2022-42898",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-42898"
    },
    {
      "cve": "CVE-2022-42919",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-42919"
    },
    {
      "cve": "CVE-2022-43680",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-4415",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-4415"
    },
    {
      "cve": "CVE-2022-45061",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-45061"
    },
    {
      "cve": "CVE-2022-45873",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-45873"
    },
    {
      "cve": "CVE-2022-46175",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-46175"
    },
    {
      "cve": "CVE-2022-47024",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-47024"
    },
    {
      "cve": "CVE-2022-47629",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-47629"
    },
    {
      "cve": "CVE-2022-48303",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-48303"
    },
    {
      "cve": "CVE-2022-48337",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-48337"
    },
    {
      "cve": "CVE-2022-48338",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-48338"
    },
    {
      "cve": "CVE-2022-48339",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2022-48339"
    },
    {
      "cve": "CVE-2023-0361",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-0361"
    },
    {
      "cve": "CVE-2023-0620",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-0620"
    },
    {
      "cve": "CVE-2023-0665",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-0665"
    },
    {
      "cve": "CVE-2023-22809",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-22809"
    },
    {
      "cve": "CVE-2023-24329",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-24329"
    },
    {
      "cve": "CVE-2023-2491",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-2491"
    },
    {
      "cve": "CVE-2023-24999",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-24999"
    },
    {
      "cve": "CVE-2023-25000",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-25000"
    },
    {
      "cve": "CVE-2023-25136",
      "product_status": {
        "known_affected": [
          "T032435",
          "T031698",
          "T008027",
          "T028472",
          "67646",
          "T012167",
          "T004914",
          "74185",
          "T031870",
          "T027916",
          "T028307",
          "T028416",
          "T026435",
          "T028225",
          "T031839",
          "T048677",
          "T048676",
          "T028289",
          "T048675"
        ]
      },
      "release_date": "2023-06-22T22:00:00.000+00:00",
      "title": "CVE-2023-25136"
    }
  ]
}

WID-SEC-W-2023-1807

Vulnerability from csaf_certbund - Published: 2023-07-18 22:00 - Updated: 2023-12-26 23:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-26119

In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-26049

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-25690

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-25194

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-24998

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-23914

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22899

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22040

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22031

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21994

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-20863

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-20861

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-20860

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-1436

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-1370

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45688

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45047

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-43680

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42920

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42890

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-41966

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-41853

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40152

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-36033

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-33879

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-31197

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-29546

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-25647

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-24409

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-23437

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-46877

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-43113

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-42575

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-41184

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-4104

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-37533

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36374

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36090

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-34429

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-33813

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-29425

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-28168

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-26117

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-23926

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-8908

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-36518

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-17521

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-13956

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-13936

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 9.1.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:9.1.0`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpujul2023…	external
https://www.dell.com/support/kbdoc/000220669/dsa-2023-=	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1807 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1807.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1807 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1807"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - July 2023 - Appendix Oracle Fusion Middleware vom 2023-07-18",
        "url": "https://www.oracle.com/security-alerts/cpujul2023.html#AppendixFMW"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-409 vom 2023-12-23",
        "url": "https://www.dell.com/support/kbdoc/000220669/dsa-2023-="
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-12-26T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:55:51.397+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1807",
      "initial_release_date": "2023-07-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-07-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-12-26T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.3.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.3.0",
                  "product_id": "618028",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 9.1.0",
                "product": {
                  "name": "Oracle Fusion Middleware 9.1.0",
                  "product_id": "T022847",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:9.1.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware \u003c 11.1.2.3.1",
                "product": {
                  "name": "Oracle Fusion Middleware \u003c 11.1.2.3.1",
                  "product_id": "T028708",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:11.1.2.3.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-26119",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-26119"
    },
    {
      "cve": "CVE-2023-26049",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-26049"
    },
    {
      "cve": "CVE-2023-25690",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-25690"
    },
    {
      "cve": "CVE-2023-25194",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-25194"
    },
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-23914",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-23914"
    },
    {
      "cve": "CVE-2023-22899",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-22899"
    },
    {
      "cve": "CVE-2023-22040",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-22040"
    },
    {
      "cve": "CVE-2023-22031",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-22031"
    },
    {
      "cve": "CVE-2023-21994",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-21994"
    },
    {
      "cve": "CVE-2023-20863",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-20863"
    },
    {
      "cve": "CVE-2023-20861",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-20861"
    },
    {
      "cve": "CVE-2023-20860",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-20860"
    },
    {
      "cve": "CVE-2023-1436",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-1436"
    },
    {
      "cve": "CVE-2023-1370",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2023-1370"
    },
    {
      "cve": "CVE-2022-45688",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-45688"
    },
    {
      "cve": "CVE-2022-45047",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-45047"
    },
    {
      "cve": "CVE-2022-43680",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-43680"
    },
    {
      "cve": "CVE-2022-42920",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-42920"
    },
    {
      "cve": "CVE-2022-42890",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-41966",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-41966"
    },
    {
      "cve": "CVE-2022-41853",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-41853"
    },
    {
      "cve": "CVE-2022-40152",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-36033",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-36033"
    },
    {
      "cve": "CVE-2022-33879",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-33879"
    },
    {
      "cve": "CVE-2022-31197",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-31197"
    },
    {
      "cve": "CVE-2022-29546",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-29546"
    },
    {
      "cve": "CVE-2022-25647",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-25647"
    },
    {
      "cve": "CVE-2022-24409",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-24409"
    },
    {
      "cve": "CVE-2022-23437",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2022-23437"
    },
    {
      "cve": "CVE-2021-46877",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-46877"
    },
    {
      "cve": "CVE-2021-43113",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-43113"
    },
    {
      "cve": "CVE-2021-42575",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-42575"
    },
    {
      "cve": "CVE-2021-41184",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-4104",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-4104"
    },
    {
      "cve": "CVE-2021-37533",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2021-36374",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-36374"
    },
    {
      "cve": "CVE-2021-36090",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-36090"
    },
    {
      "cve": "CVE-2021-34429",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-34429"
    },
    {
      "cve": "CVE-2021-33813",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-33813"
    },
    {
      "cve": "CVE-2021-29425",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-29425"
    },
    {
      "cve": "CVE-2021-28168",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-28168"
    },
    {
      "cve": "CVE-2021-26117",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-26117"
    },
    {
      "cve": "CVE-2021-23926",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2021-23926"
    },
    {
      "cve": "CVE-2020-8908",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2020-8908"
    },
    {
      "cve": "CVE-2020-36518",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2020-36518"
    },
    {
      "cve": "CVE-2020-17521",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2020-17521"
    },
    {
      "cve": "CVE-2020-13956",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2020-13956"
    },
    {
      "cve": "CVE-2020-13936",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen sind bestimmte Privilegien und eine Benutzerinteraktion erforderlich. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T022847",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-07-18T22:00:00.000+00:00",
      "title": "CVE-2020-13936"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-43680 (GCVE-0-2022-43680)

Tags

Sightings

Nomenclature