Vulnerability-Lookup

CVE-2024-36114 (GCVE-0-2024-36114)

Vulnerability from cvelistv5 – Published: 2024-05-29 20:24 – Updated: 2024-08-02 03:30

Title

Decompressors can crash the JVM and leak memory content in Aircompressor

Summary

Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor (LZ4, LZO, Snappy, Zstandard) can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java process (which could contain sensitive information). When decompressing certain data, the decompressors try to access memory outside the bounds of the given byte arrays or byte buffers. Because Aircompressor uses the JDK class `sun.misc.Unsafe` to speed up memory access, no additional bounds checks are performed and this has similar security consequences as out-of-bounds access in C or C++, namely it can lead to non-deterministic behavior or crash the JVM. Users should update to Aircompressor 0.27 or newer where these issues have been fixed. When decompressing data from untrusted users, this can be exploited for a denial-of-service attack by crashing the JVM, or to leak other sensitive information from the Java process. There are no known workarounds for this issue.

Severity

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-125 - Out-of-bounds Read
CWE-787 - Out-of-bounds Write

Assigner

GitHub_M

References

5 references

URL	Tags
https://github.com/airlift/aircompressor/security…	x_refsource_CONFIRM
https://github.com/airlift/aircompressor/commit/1…	x_refsource_MISC
https://github.com/airlift/aircompressor/commit/2…	x_refsource_MISC
https://github.com/airlift/aircompressor/commit/c…	x_refsource_MISC
https://github.com/airlift/aircompressor/commit/d…	x_refsource_MISC

Impacted products

2 products

Vendor	Product	Version
airlift	aircompressor	Affected: < 0.27
airlift	aircompressor	Affected: 0 , < 0.27 (custom) cpe:2.3:a:airlift:aircompressor::::::::

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:airlift:aircompressor:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "aircompressor",
            "vendor": "airlift",
            "versions": [
              {
                "lessThan": "0.27",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-36114",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-04T19:37:59.883008Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T19:42:22.047Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "ADP Container"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T03:30:13.037Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4"
          },
          {
            "name": "https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071"
          },
          {
            "name": "https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e"
          },
          {
            "name": "https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f"
          },
          {
            "name": "https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "aircompressor",
          "vendor": "airlift",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 0.27"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor (LZ4, LZO, Snappy, Zstandard) can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java process (which could contain sensitive information). When decompressing certain data, the decompressors try to access memory outside the bounds of the given byte arrays or byte buffers. Because Aircompressor uses the JDK class `sun.misc.Unsafe` to speed up memory access, no additional bounds checks are performed and this has similar security consequences as out-of-bounds access in C or C++, namely it can lead to non-deterministic behavior or crash the JVM. Users should update to Aircompressor 0.27 or newer where these issues have been fixed. When decompressing data from untrusted users, this can be exploited for a denial-of-service attack by crashing the JVM, or to leak other sensitive information from the Java process. There are no known workarounds for this issue."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "CWE-125: Out-of-bounds Read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "CWE-787: Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T20:24:53.906Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4"
        },
        {
          "name": "https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071"
        },
        {
          "name": "https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e"
        },
        {
          "name": "https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f"
        },
        {
          "name": "https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e"
        }
      ],
      "source": {
        "advisory": "GHSA-973x-65j7-xcf4",
        "discovery": "UNKNOWN"
      },
      "title": "Decompressors can crash the JVM and leak memory content in Aircompressor"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-36114",
    "datePublished": "2024-05-29T20:24:53.906Z",
    "dateReserved": "2024-05-20T21:07:48.187Z",
    "dateUpdated": "2024-08-02T03:30:13.037Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-36114",
      "date": "2026-06-05",
      "epss": "0.00195",
      "percentile": "0.41319"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-36114\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-05-29T21:15:49.237\",\"lastModified\":\"2024-11-21T09:21:38.970\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor (LZ4, LZO, Snappy, Zstandard) can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java process (which could contain sensitive information). When decompressing certain data, the decompressors try to access memory outside the bounds of the given byte arrays or byte buffers. Because Aircompressor uses the JDK class `sun.misc.Unsafe` to speed up memory access, no additional bounds checks are performed and this has similar security consequences as out-of-bounds access in C or C++, namely it can lead to non-deterministic behavior or crash the JVM. Users should update to Aircompressor 0.27 or newer where these issues have been fixed. When decompressing data from untrusted users, this can be exploited for a denial-of-service attack by crashing the JVM, or to leak other sensitive information from the Java process. There are no known workarounds for this issue.\"},{\"lang\":\"es\",\"value\":\"Aircompressor es una librer\u00eda con puertos de los algoritmos de compresi\u00f3n Snappy, LZO, LZ4 y Zstandard a Java. Todas las implementaciones de descompresor de Aircompressor (LZ4, LZO, Snappy, Zstandard) pueden bloquear la JVM para determinadas entradas y, en algunos casos, tambi\u00e9n filtrar el contenido de otra memoria del proceso Java (que podr\u00eda contener informaci\u00f3n confidencial). Al descomprimir ciertos datos, los descompresores intentan acceder a la memoria fuera de los l\u00edmites de las matrices de bytes o b\u00faferes de bytes dados. Debido a que Aircompressor utiliza la clase JDK `sun.misc.Unsafe` para acelerar el acceso a la memoria, no se realizan comprobaciones de los l\u00edmites adicionales y esto tiene consecuencias de seguridad similares a las del acceso fuera de los l\u00edmites en C o C++, es decir, puede conducir a no comportamiento determinista o bloquear la JVM. Los usuarios deben actualizar a Aircompressor 0.27 o posterior donde se hayan solucionado estos problemas. Al descomprimir datos de usuarios que no son de confianza, esto puede aprovecharse para un ataque de denegaci\u00f3n de servicio al bloquear la JVM o para filtrar otra informaci\u00f3n confidencial del proceso Java. No se conocen workarounds para este problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.7}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"references\":[{\"url\":\"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\", \"name\": \"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\", \"name\": \"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\", \"name\": \"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\", \"name\": \"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\", \"name\": \"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T03:30:13.037Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36114\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-04T19:37:59.883008Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:airlift:aircompressor:*:*:*:*:*:*:*:*\"], \"vendor\": \"airlift\", \"product\": \"aircompressor\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.27\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-04T19:39:59.422Z\"}}], \"cna\": {\"title\": \"Decompressors can crash the JVM and leak memory content in Aircompressor\", \"source\": {\"advisory\": \"GHSA-973x-65j7-xcf4\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"airlift\", \"product\": \"aircompressor\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 0.27\"}]}], \"references\": [{\"url\": \"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\", \"name\": \"https://github.com/airlift/aircompressor/security/advisories/GHSA-973x-65j7-xcf4\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\", \"name\": \"https://github.com/airlift/aircompressor/commit/15e68df9eb0c2bfde7f796231ee7cd1982965071\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\", \"name\": \"https://github.com/airlift/aircompressor/commit/2cea90a45534f9aacbb77426fb64e975504dee6e\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\", \"name\": \"https://github.com/airlift/aircompressor/commit/cf66151541edb062ea88b6f3baab3f95e48b7b7f\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\", \"name\": \"https://github.com/airlift/aircompressor/commit/d01ecb779375a092d00e224abe7869cdf49ddc3e\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. All decompressor implementations of Aircompressor (LZ4, LZO, Snappy, Zstandard) can crash the JVM for certain input, and in some cases also leak the content of other memory of the Java process (which could contain sensitive information). When decompressing certain data, the decompressors try to access memory outside the bounds of the given byte arrays or byte buffers. Because Aircompressor uses the JDK class `sun.misc.Unsafe` to speed up memory access, no additional bounds checks are performed and this has similar security consequences as out-of-bounds access in C or C++, namely it can lead to non-deterministic behavior or crash the JVM. Users should update to Aircompressor 0.27 or newer where these issues have been fixed. When decompressing data from untrusted users, this can be exploited for a denial-of-service attack by crashing the JVM, or to leak other sensitive information from the Java process. There are no known workarounds for this issue.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125: Out-of-bounds Read\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787: Out-of-bounds Write\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-05-29T20:24:53.906Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-36114\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-02T03:30:13.037Z\", \"dateReserved\": \"2024-05-20T21:07:48.187Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-05-29T20:24:53.906Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

NCSC-2025-0123

Vulnerability from csaf_ncscnl - Published: 2025-04-16 08:37 - Updated: 2025-04-16 08:37

Summary

Kwetsbaarheden verholpen in Oracle Database Producten

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten: Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.

Interpretaties: De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores variërend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.

Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans: medium

Schade: high

CWE-385: Covert Timing Channel

CWE-347: Improper Verification of Cryptographic Signature

CWE-1286: Improper Validation of Syntactic Correctness of Input

CWE-125: Out-of-bounds Read

CWE-404: Improper Resource Shutdown or Release

CWE-400: Uncontrolled Resource Consumption

CWE-502: Deserialization of Untrusted Data

CWE-918: Server-Side Request Forgery (SSRF)

CWE-787: Out-of-bounds Write

CWE-20: Improper Input Validation

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-44: Path Equivalence: 'file.name' (Internal Dot)

CWE-226: Sensitive Information in Resource Not Removed Before Reuse

CWE-706: Use of Incorrectly-Resolved Name or Reference

CWE-669: Incorrect Resource Transfer Between Spheres

CWE-755: Improper Handling of Exceptional Conditions

CWE-178: Improper Handling of Case Sensitivity

CWE-193: Off-by-one Error

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

CWE-523: Unprotected Transport of Credentials

CWE-190: Integer Overflow or Wraparound

CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute

CWE-285: Improper Authorization

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-284: Improper Access Control

CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-476: NULL Pointer Dereference

CWE-459: Incomplete Cleanup

CWE-94: Improper Control of Generation of Code ('Code Injection')

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-674: Uncontrolled Recursion

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CWE-122: Heap-based Buffer Overflow

CWE-121: Stack-based Buffer Overflow

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-269: Improper Privilege Management

CWE-287: Improper Authentication

CVE-2020-1935

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-1938

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-285 - Improper Authorization

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-9484

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-11996

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-13935

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-13943

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2020-36843

4.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-24122

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-25122

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-25329

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-30640

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-287 - Improper Authentication

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-33037

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-41079

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-41184

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-42575

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2021-43980

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-3786

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-193 - Off-by-one Error

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-25762

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-226 - Sensitive Information in Resource Not Removed Before Reuse

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2022-42252

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-28708

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-34053

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-41080

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-42795

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-459 - Incomplete Cleanup

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-44487

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-45648

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2023-46589

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-6763

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-8176

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-8184

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-9143

CWE-787 - Out-of-bounds Write

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11053

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11233

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

CWE-122 - Heap-based Buffer Overflow

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11234

7.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-11236

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-13176

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-385 - Covert Timing Channel

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-23672

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-459 - Incomplete Cleanup

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-24549

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-36114

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE-125 - Out-of-bounds Read

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-37891

4.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CWE-669 - Incorrect Resource Transfer Between Spheres

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38819

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38820

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-38999

10.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-39338

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-47554

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-47561

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-53382

4.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2024-57699

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-404 - Improper Resource Shutdown or Release

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-21578

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-24813

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-502 - Deserialization of Untrusted Data

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-24970

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-25193

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-26791

4.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30694

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30701

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30702

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30733

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

CVE-2025-30736

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Known affected 59 products

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

References

58 references

URL	Category
https://www.oracle.com/security-alerts/cpuapr2025.html	external
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2020…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2021…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2022…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2023…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2024…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self
https://api.ncsc.nl/velma/v1/vulnerabilities/2025…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Oracle heeft kwetsbaarheden verholpen in diverse Oracle Database Producten en subsystemen, zoals Oracle Server, NoSQL, TimesTen, Secure Backup en Essbase.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om een Denial-of-Service te veroorzaken of om ongeautoriseerde toegang te verkrijgen tot gevoelige gegevens en gegevens te manipuleren. Subcomponenten als de RDBMS Listener, Java VM, en andere componenten zijn specifiek kwetsbaar, met CVSS-scores vari\u00ebrend van 5.3 tot 7.5, wat duidt op een gematigd tot hoog risico.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Covert Timing Channel",
        "title": "CWE-385"
      },
      {
        "category": "general",
        "text": "Improper Verification of Cryptographic Signature",
        "title": "CWE-347"
      },
      {
        "category": "general",
        "text": "Improper Validation of Syntactic Correctness of Input",
        "title": "CWE-1286"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Uncontrolled Resource Consumption",
        "title": "CWE-400"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Server-Side Request Forgery (SSRF)",
        "title": "CWE-918"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Write",
        "title": "CWE-787"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
        "title": "CWE-79"
      },
      {
        "category": "general",
        "text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
        "title": "CWE-44"
      },
      {
        "category": "general",
        "text": "Sensitive Information in Resource Not Removed Before Reuse",
        "title": "CWE-226"
      },
      {
        "category": "general",
        "text": "Use of Incorrectly-Resolved Name or Reference",
        "title": "CWE-706"
      },
      {
        "category": "general",
        "text": "Incorrect Resource Transfer Between Spheres",
        "title": "CWE-669"
      },
      {
        "category": "general",
        "text": "Improper Handling of Exceptional Conditions",
        "title": "CWE-755"
      },
      {
        "category": "general",
        "text": "Improper Handling of Case Sensitivity",
        "title": "CWE-178"
      },
      {
        "category": "general",
        "text": "Off-by-one Error",
        "title": "CWE-193"
      },
      {
        "category": "general",
        "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
        "title": "CWE-601"
      },
      {
        "category": "general",
        "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
        "title": "CWE-444"
      },
      {
        "category": "general",
        "text": "Unprotected Transport of Credentials",
        "title": "CWE-523"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
        "title": "CWE-614"
      },
      {
        "category": "general",
        "text": "Improper Authorization",
        "title": "CWE-285"
      },
      {
        "category": "general",
        "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
        "title": "CWE-362"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
        "title": "CWE-1321"
      },
      {
        "category": "general",
        "text": "NULL Pointer Dereference",
        "title": "CWE-476"
      },
      {
        "category": "general",
        "text": "Incomplete Cleanup",
        "title": "CWE-459"
      },
      {
        "category": "general",
        "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
        "title": "CWE-94"
      },
      {
        "category": "general",
        "text": "Allocation of Resources Without Limits or Throttling",
        "title": "CWE-770"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
        "title": "CWE-74"
      },
      {
        "category": "general",
        "text": "Uncontrolled Recursion",
        "title": "CWE-674"
      },
      {
        "category": "general",
        "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
        "title": "CWE-22"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Stack-based Buffer Overflow",
        "title": "CWE-121"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Improper Privilege Management",
        "title": "CWE-269"
      },
      {
        "category": "general",
        "text": "Improper Authentication",
        "title": "CWE-287"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; nvd; oracle",
        "url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Oracle Database Producten",
    "tracking": {
      "current_release_date": "2025-04-16T08:37:39.412900Z",
      "generator": {
        "date": "2025-02-25T15:15:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.0"
        }
      },
      "id": "NCSC-2025-0123",
      "initial_release_date": "2025-04-16T08:37:39.412900Z",
      "revision_history": [
        {
          "date": "2025-04-16T08:37:39.412900Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/22.1",
                    "product": {
                      "name": "vers:unknown/22.1",
                      "product_id": "CSAFPID-1304603"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Database Server"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/13.5.0.0",
                    "product": {
                      "name": "vers:unknown/13.5.0.0",
                      "product_id": "CSAFPID-1201359"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Enterprise Manager for Oracle Database"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                    "product": {
                      "name": "vers:unknown/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                      "product_id": "CSAFPID-2698376"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:unknown/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698377"
                    }
                  }
                ],
                "category": "product_name",
                "name": "GoldenGate"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.1",
                    "product": {
                      "name": "vers:oracle/23.1",
                      "product_id": "CSAFPID-1238473"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/2.0",
                    "product": {
                      "name": "vers:unknown/2.0",
                      "product_id": "CSAFPID-1237753"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/20.2",
                    "product": {
                      "name": "vers:unknown/20.2",
                      "product_id": "CSAFPID-1238475"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/23.1",
                    "product": {
                      "name": "vers:unknown/23.1",
                      "product_id": "CSAFPID-1296375"
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/none",
                    "product": {
                      "name": "vers:unknown/none",
                      "product_id": "CSAFPID-1237603"
                    }
                  }
                ],
                "category": "product_name",
                "name": "Big Data Spatial and Graph"
              }
            ],
            "category": "product_family",
            "name": "Oracle"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=19.3|\u003c=19.22",
                "product": {
                  "name": "vers:oracle/\u003e=19.3|\u003c=19.22",
                  "product_id": "CSAFPID-1145825"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=21.3|\u003c=21.13",
                "product": {
                  "name": "vers:oracle/\u003e=21.3|\u003c=21.13",
                  "product_id": "CSAFPID-1145826"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.3|\u003c=19.26",
                    "product": {
                      "name": "vers:oracle/\u003e=19.3|\u003c=19.26",
                      "product_id": "CSAFPID-2698969",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698968",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.4|\u003c=21.16",
                    "product": {
                      "name": "vers:oracle/\u003e=21.4|\u003c=21.16",
                      "product_id": "CSAFPID-1839905",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                      "product_id": "CSAFPID-2698934",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Database Server"
              }
            ],
            "category": "product_family",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/13.5.0.0",
                "product": {
                  "name": "vers:oracle/13.5.0.0",
                  "product_id": "CSAFPID-1144644"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Enterprise Manager for Oracle Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.5.0",
                    "product": {
                      "name": "vers:oracle/1.5.0",
                      "product_id": "CSAFPID-2699002",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.5.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.6.0",
                    "product": {
                      "name": "vers:oracle/1.6.0",
                      "product_id": "CSAFPID-2699003",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.6.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/1.6.1",
                    "product": {
                      "name": "vers:oracle/1.6.1",
                      "product_id": "CSAFPID-2699004",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:nosql_database:1.6.1:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle NoSQL Database"
              }
            ],
            "category": "product_family",
            "name": "Oracle NoSQL Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
                    "product": {
                      "name": "vers:oracle/\u003e=22.1.1.1.0|\u003c=22.1.1.30.0",
                      "product_id": "CSAFPID-2699053",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle TimesTen In-Memory Database"
              }
            ],
            "category": "product_family",
            "name": "Oracle TimesTen In-Memory Database"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/25.1.0",
                    "product": {
                      "name": "vers:oracle/25.1.0",
                      "product_id": "CSAFPID-2698932",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/25.2.0",
                    "product": {
                      "name": "vers:oracle/25.2.0",
                      "product_id": "CSAFPID-2698931",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
                    "product": {
                      "name": "vers:oracle/\u003e=23.8.0|\u003c=23.11.0",
                      "product_id": "CSAFPID-2698930",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
                    "product": {
                      "name": "vers:oracle/\u003e=24.1.0|\u003c=24.11.0",
                      "product_id": "CSAFPID-2698933",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Autonomous Health Framework"
              }
            ],
            "category": "product_family",
            "name": "Oracle Autonomous Health Framework"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/21.7.1.0.0",
                    "product": {
                      "name": "vers:oracle/21.7.1.0.0",
                      "product_id": "CSAFPID-2698943",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:essbase:21.7.1.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Essbase"
              }
            ],
            "category": "product_family",
            "name": "Oracle Essbase"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.10",
                      "product_id": "CSAFPID-2698949",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "GoldenGate Stream Analytics"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.26.0.0.250219",
                      "product_id": "CSAFPID-2698941",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3|\u003c=21.17",
                      "product_id": "CSAFPID-2698942",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:21.3-21.17:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.7",
                      "product_id": "CSAFPID-2699022",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate:23.4-23.7:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle GoldenGate"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
                    "product": {
                      "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.18",
                      "product_id": "CSAFPID-1839977",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
                    "product": {
                      "name": "vers:oracle/\u003e=21.3.0.0.0|\u003c=21.16.0.0.0",
                      "product_id": "CSAFPID-1840034",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/\u003e=23.4|\u003c=23.6",
                    "product": {
                      "name": "vers:oracle/\u003e=23.4|\u003c=23.6",
                      "product_id": "CSAFPID-1840035",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle GoldenGate Big Data and Application Adapters"
              }
            ],
            "category": "product_family",
            "name": "Oracle GoldenGate"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
                "product": {
                  "name": "vers:oracle/\u003e=19.1.0.0.0|\u003c=19.1.0.0.7",
                  "product_id": "CSAFPID-1144602"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle GoldenGate Stream Analytics"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c23.1",
                "product": {
                  "name": "vers:oracle/\u003c23.1",
                  "product_id": "CSAFPID-1145800"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:unknown/2.0",
                "product": {
                  "name": "vers:unknown/2.0",
                  "product_id": "CSAFPID-356315",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:unknown/23.1",
                "product": {
                  "name": "vers:unknown/23.1",
                  "product_id": "CSAFPID-356152"
                }
              }
            ],
            "category": "product_name",
            "name": "Big Data Spatial and Graph"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.4.3",
                    "product": {
                      "name": "vers:oracle/23.4.3",
                      "product_id": "CSAFPID-2699065",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.3:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/24.3.0",
                    "product": {
                      "name": "vers:oracle/24.3.0",
                      "product_id": "CSAFPID-2699066",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.3.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/23.4.4",
                    "product": {
                      "name": "vers:oracle/23.4.4",
                      "product_id": "CSAFPID-1840017",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.4:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/24.4.0",
                    "product": {
                      "name": "vers:oracle/24.4.0",
                      "product_id": "CSAFPID-1840013",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.4.0:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Graph Server and Client"
              }
            ],
            "category": "product_family",
            "name": "Oracle Graph Server and Client"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=22.4.7",
                "product": {
                  "name": "vers:oracle/\u003c=22.4.7",
                  "product_id": "CSAFPID-1145419",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=23.4.2",
                "product": {
                  "name": "vers:oracle/\u003c=23.4.2",
                  "product_id": "CSAFPID-1145421",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:*:*:*:*:*:*:*"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:oracle/\u003c=24.1.0",
                "product": {
                  "name": "vers:oracle/\u003c=24.1.0",
                  "product_id": "CSAFPID-1145422",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:*:*:*:*:*:*:*"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Graph Server and Client"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:oracle/3.0.6",
                "product": {
                  "name": "vers:oracle/3.0.6",
                  "product_id": "CSAFPID-1145420",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:*:*:*:*:*:*:*"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Big Data Spatial and Graph"
          },
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.1",
                    "product": {
                      "name": "vers:oracle/12.1.0.1",
                      "product_id": "CSAFPID-2699109",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.1:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.2",
                    "product": {
                      "name": "vers:oracle/12.1.0.2",
                      "product_id": "CSAFPID-2699107",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.2:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/12.1.0.3",
                    "product": {
                      "name": "vers:oracle/12.1.0.3",
                      "product_id": "CSAFPID-2699106",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:12.1.0.3:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.0",
                    "product": {
                      "name": "vers:oracle/18.1.0.0",
                      "product_id": "CSAFPID-2699110",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.0:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.1",
                    "product": {
                      "name": "vers:oracle/18.1.0.1",
                      "product_id": "CSAFPID-2698972",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.1:*:*:*:*:*:*:*"
                      }
                    }
                  },
                  {
                    "category": "product_version_range",
                    "name": "vers:oracle/18.1.0.2",
                    "product": {
                      "name": "vers:oracle/18.1.0.2",
                      "product_id": "CSAFPID-2699108",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:oracle:secure_backup:18.1.0.2:*:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Oracle Secure Backup"
              }
            ],
            "category": "product_family",
            "name": "Oracle Secure Backup"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:semver/19.3|\u003c=19.26",
                "product": {
                  "name": "vers:semver/19.3|\u003c=19.26",
                  "product_id": "CSAFPID-2698485"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/21.3|\u003c=21.17",
                "product": {
                  "name": "vers:semver/21.3|\u003c=21.17",
                  "product_id": "CSAFPID-2698486"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/23.4|\u003c=23.7",
                "product": {
                  "name": "vers:semver/23.4|\u003c=23.7",
                  "product_id": "CSAFPID-2698487"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Database Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.1",
                "product": {
                  "name": "vers:semver/12.1.0.1",
                  "product_id": "CSAFPID-2698463"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.2",
                "product": {
                  "name": "vers:semver/12.1.0.2",
                  "product_id": "CSAFPID-2698464"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/12.1.0.3",
                "product": {
                  "name": "vers:semver/12.1.0.3",
                  "product_id": "CSAFPID-2698465"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.0",
                "product": {
                  "name": "vers:semver/18.1.0.0",
                  "product_id": "CSAFPID-2698466"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.1",
                "product": {
                  "name": "vers:semver/18.1.0.1",
                  "product_id": "CSAFPID-2698467"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:semver/18.1.0.2",
                "product": {
                  "name": "vers:semver/18.1.0.2",
                  "product_id": "CSAFPID-2698468"
                }
              }
            ],
            "category": "product_name",
            "name": "Oracle Secure Backup"
          }
        ],
        "category": "vendor",
        "name": "Oracle Corporation"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-1935",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-1935",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1935.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-1935"
    },
    {
      "cve": "CVE-2020-1938",
      "cwe": {
        "id": "CWE-285",
        "name": "Improper Authorization"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authorization",
          "title": "CWE-285"
        },
        {
          "category": "other",
          "text": "Improper Privilege Management",
          "title": "CWE-269"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-1938",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1938.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-1938"
    },
    {
      "cve": "CVE-2020-9484",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-9484",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-9484.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-9484"
    },
    {
      "cve": "CVE-2020-11996",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-11996",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-11996.json"
        }
      ],
      "title": "CVE-2020-11996"
    },
    {
      "cve": "CVE-2020-13935",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-13935",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13935.json"
        }
      ],
      "title": "CVE-2020-13935"
    },
    {
      "cve": "CVE-2020-13943",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-13943",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13943.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-13943"
    },
    {
      "cve": "CVE-2020-36843",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Verification of Cryptographic Signature",
          "title": "CWE-347"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2020-36843",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-36843.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2020-36843"
    },
    {
      "cve": "CVE-2021-24122",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-24122",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-24122.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-24122"
    },
    {
      "cve": "CVE-2021-25122",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-25122",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25122.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-25122"
    },
    {
      "cve": "CVE-2021-25329",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-25329",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-25329.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-25329"
    },
    {
      "cve": "CVE-2021-30640",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authentication",
          "title": "CWE-287"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-30640",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-30640.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-30640"
    },
    {
      "cve": "CVE-2021-33037",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-33037",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-33037.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-33037"
    },
    {
      "cve": "CVE-2021-41079",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-41079",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41079.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-41079"
    },
    {
      "cve": "CVE-2021-41184",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-41184",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-41184.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-41184"
    },
    {
      "cve": "CVE-2021-42575",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-42575",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-42575.json"
        }
      ],
      "title": "CVE-2021-42575"
    },
    {
      "cve": "CVE-2021-43980",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2021-43980",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-43980.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2021-43980"
    },
    {
      "cve": "CVE-2022-3786",
      "cwe": {
        "id": "CWE-193",
        "name": "Off-by-one Error"
      },
      "notes": [
        {
          "category": "other",
          "text": "Off-by-one Error",
          "title": "CWE-193"
        },
        {
          "category": "other",
          "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
          "title": "CWE-120"
        },
        {
          "category": "other",
          "text": "NULL Pointer Dereference",
          "title": "CWE-476"
        },
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-3786",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-3786.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-3786"
    },
    {
      "cve": "CVE-2022-25762",
      "cwe": {
        "id": "CWE-226",
        "name": "Sensitive Information in Resource Not Removed Before Reuse"
      },
      "notes": [
        {
          "category": "other",
          "text": "Sensitive Information in Resource Not Removed Before Reuse",
          "title": "CWE-226"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Improper Handling of Exceptional Conditions",
          "title": "CWE-755"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-25762",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-25762.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-25762"
    },
    {
      "cve": "CVE-2022-42252",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2022-42252",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-42252.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2022-42252"
    },
    {
      "cve": "CVE-2023-28708",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "other",
          "text": "Unprotected Transport of Credentials",
          "title": "CWE-523"
        },
        {
          "category": "other",
          "text": "Sensitive Cookie in HTTPS Session Without \u0027Secure\u0027 Attribute",
          "title": "CWE-614"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-28708",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-28708.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-28708"
    },
    {
      "cve": "CVE-2023-34053",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-34053",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34053.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-34053"
    },
    {
      "cve": "CVE-2023-41080",
      "cwe": {
        "id": "CWE-601",
        "name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
          "title": "CWE-601"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-41080",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-41080.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-41080"
    },
    {
      "cve": "CVE-2023-42795",
      "cwe": {
        "id": "CWE-459",
        "name": "Incomplete Cleanup"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Cleanup",
          "title": "CWE-459"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-42795",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-42795.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-42795"
    },
    {
      "cve": "CVE-2023-44487",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-44487",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44487.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-45648",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-45648",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-45648.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-45648"
    },
    {
      "cve": "CVE-2023-46589",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-46589",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46589.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2024-6763",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Syntactic Correctness of Input",
          "title": "CWE-1286"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-6763",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6763.json"
        }
      ],
      "title": "CVE-2024-6763"
    },
    {
      "cve": "CVE-2024-8176",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        },
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8176",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8176.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-8176"
    },
    {
      "cve": "CVE-2024-8184",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "other",
          "text": "Allocation of Resources Without Limits or Throttling",
          "title": "CWE-770"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8184",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8184.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-8184"
    },
    {
      "cve": "CVE-2024-9143",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-9143",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json"
        }
      ],
      "title": "CVE-2024-9143"
    },
    {
      "cve": "CVE-2024-11053",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11053",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11053.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11053"
    },
    {
      "cve": "CVE-2024-11233",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11233",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11233.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11233"
    },
    {
      "cve": "CVE-2024-11234",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
          "title": "CWE-74"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11234",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11234.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11234"
    },
    {
      "cve": "CVE-2024-11236",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-11236",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11236.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-11236"
    },
    {
      "cve": "CVE-2024-13176",
      "cwe": {
        "id": "CWE-385",
        "name": "Covert Timing Channel"
      },
      "notes": [
        {
          "category": "other",
          "text": "Covert Timing Channel",
          "title": "CWE-385"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-13176",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-13176.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-13176"
    },
    {
      "cve": "CVE-2024-23672",
      "cwe": {
        "id": "CWE-459",
        "name": "Incomplete Cleanup"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Cleanup",
          "title": "CWE-459"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-23672",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23672.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-24549",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-24549",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24549.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-24549"
    },
    {
      "cve": "CVE-2024-36114",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-36114",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-36114.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-36114"
    },
    {
      "cve": "CVE-2024-37891",
      "cwe": {
        "id": "CWE-669",
        "name": "Incorrect Resource Transfer Between Spheres"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incorrect Resource Transfer Between Spheres",
          "title": "CWE-669"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-37891",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-37891"
    },
    {
      "cve": "CVE-2024-38819",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38819",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38819"
    },
    {
      "cve": "CVE-2024-38820",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "other",
          "text": "Improper Handling of Case Sensitivity",
          "title": "CWE-178"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38820",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38820"
    },
    {
      "cve": "CVE-2024-38999",
      "cwe": {
        "id": "CWE-1321",
        "name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
          "title": "CWE-1321"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38999",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 10.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-38999"
    },
    {
      "cve": "CVE-2024-39338",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Server-Side Request Forgery (SSRF)",
          "title": "CWE-918"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-39338",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39338.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-39338"
    },
    {
      "cve": "CVE-2024-47554",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-47554",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-47554"
    },
    {
      "cve": "CVE-2024-47561",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-47561",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-47561"
    },
    {
      "cve": "CVE-2024-53382",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
          "title": "CWE-94"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-53382",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-53382.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-53382"
    },
    {
      "cve": "CVE-2024-57699",
      "cwe": {
        "id": "CWE-404",
        "name": "Improper Resource Shutdown or Release"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "other",
          "text": "Uncontrolled Recursion",
          "title": "CWE-674"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-57699",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-57699.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2024-57699"
    },
    {
      "cve": "CVE-2025-21578",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-21578",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21578.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-21578"
    },
    {
      "cve": "CVE-2025-24813",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "other",
          "text": "Path Equivalence: \u0027file.name\u0027 (Internal Dot)",
          "title": "CWE-44"
        },
        {
          "category": "other",
          "text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
          "title": "CWE-444"
        },
        {
          "category": "other",
          "text": "Use of Incorrectly-Resolved Name or Reference",
          "title": "CWE-706"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24813",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24813.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-24813"
    },
    {
      "cve": "CVE-2025-24970",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Improper Resource Shutdown or Release",
          "title": "CWE-404"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24970",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24970.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-24970"
    },
    {
      "cve": "CVE-2025-25193",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "notes": [
        {
          "category": "other",
          "text": "Uncontrolled Resource Consumption",
          "title": "CWE-400"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-25193",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-25193.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-25193"
    },
    {
      "cve": "CVE-2025-26791",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "title": "CWE-79"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-26791",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-26791.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-26791"
    },
    {
      "cve": "CVE-2025-30694",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30694",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30694.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30694"
    },
    {
      "cve": "CVE-2025-30701",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30701",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30701.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30701"
    },
    {
      "cve": "CVE-2025-30702",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30702",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30702.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30702"
    },
    {
      "cve": "CVE-2025-30733",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30733",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30733.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30733"
    },
    {
      "cve": "CVE-2025-30736",
      "product_status": {
        "known_affected": [
          "CSAFPID-1304603",
          "CSAFPID-1201359",
          "CSAFPID-1145825",
          "CSAFPID-2698969",
          "CSAFPID-1145826",
          "CSAFPID-2698968",
          "CSAFPID-1839905",
          "CSAFPID-2698934",
          "CSAFPID-1144644",
          "CSAFPID-2699002",
          "CSAFPID-2699003",
          "CSAFPID-2699004",
          "CSAFPID-2699053",
          "CSAFPID-2698485",
          "CSAFPID-2698486",
          "CSAFPID-2698487",
          "CSAFPID-2698932",
          "CSAFPID-2698931",
          "CSAFPID-2698930",
          "CSAFPID-2698933",
          "CSAFPID-2698943",
          "CSAFPID-2698376",
          "CSAFPID-2698377",
          "CSAFPID-2698949",
          "CSAFPID-2698941",
          "CSAFPID-2698942",
          "CSAFPID-2699022",
          "CSAFPID-1839977",
          "CSAFPID-1840034",
          "CSAFPID-1840035",
          "CSAFPID-1144602",
          "CSAFPID-1238473",
          "CSAFPID-1145800",
          "CSAFPID-356315",
          "CSAFPID-1237753",
          "CSAFPID-1238475",
          "CSAFPID-1296375",
          "CSAFPID-356152",
          "CSAFPID-1237603",
          "CSAFPID-2699065",
          "CSAFPID-2699066",
          "CSAFPID-1840017",
          "CSAFPID-1840013",
          "CSAFPID-1145419",
          "CSAFPID-1145421",
          "CSAFPID-1145422",
          "CSAFPID-1145420",
          "CSAFPID-2699109",
          "CSAFPID-2699107",
          "CSAFPID-2699106",
          "CSAFPID-2699110",
          "CSAFPID-2698972",
          "CSAFPID-2699108",
          "CSAFPID-2698463",
          "CSAFPID-2698464",
          "CSAFPID-2698465",
          "CSAFPID-2698466",
          "CSAFPID-2698467",
          "CSAFPID-2698468"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-30736",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-30736.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1304603",
            "CSAFPID-1201359",
            "CSAFPID-1145825",
            "CSAFPID-2698969",
            "CSAFPID-1145826",
            "CSAFPID-2698968",
            "CSAFPID-1839905",
            "CSAFPID-2698934",
            "CSAFPID-1144644",
            "CSAFPID-2699002",
            "CSAFPID-2699003",
            "CSAFPID-2699004",
            "CSAFPID-2699053",
            "CSAFPID-2698485",
            "CSAFPID-2698486",
            "CSAFPID-2698487",
            "CSAFPID-2698932",
            "CSAFPID-2698931",
            "CSAFPID-2698930",
            "CSAFPID-2698933",
            "CSAFPID-2698943",
            "CSAFPID-2698376",
            "CSAFPID-2698377",
            "CSAFPID-2698949",
            "CSAFPID-2698941",
            "CSAFPID-2698942",
            "CSAFPID-2699022",
            "CSAFPID-1839977",
            "CSAFPID-1840034",
            "CSAFPID-1840035",
            "CSAFPID-1144602",
            "CSAFPID-1238473",
            "CSAFPID-1145800",
            "CSAFPID-356315",
            "CSAFPID-1237753",
            "CSAFPID-1238475",
            "CSAFPID-1296375",
            "CSAFPID-356152",
            "CSAFPID-1237603",
            "CSAFPID-2699065",
            "CSAFPID-2699066",
            "CSAFPID-1840017",
            "CSAFPID-1840013",
            "CSAFPID-1145419",
            "CSAFPID-1145421",
            "CSAFPID-1145422",
            "CSAFPID-1145420",
            "CSAFPID-2699109",
            "CSAFPID-2699107",
            "CSAFPID-2699106",
            "CSAFPID-2699110",
            "CSAFPID-2698972",
            "CSAFPID-2699108",
            "CSAFPID-2698463",
            "CSAFPID-2698464",
            "CSAFPID-2698465",
            "CSAFPID-2698466",
            "CSAFPID-2698467",
            "CSAFPID-2698468"
          ]
        }
      ],
      "title": "CVE-2025-30736"
    }
  ]
}

WID-SEC-W-2024-3674

Vulnerability from csaf_certbund - Published: 2024-12-10 23:00 - Updated: 2025-11-18 23:00

Summary

Splunk Splunk Enterprise: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um vertrauliche Informationen offenzulegen, Sicherheitsmaßnahmen zu umgehen, beliebigen Code auszuführen oder unspezifische Angriffe durchzuführen.

Betroffene Betriebssysteme: - Linux - Windows

CVE-2021-44531

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-25710

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-26308

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-36114

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-36129

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-4067

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-42459

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-42460

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-42461

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-45296

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-5535

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-6531

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-53243

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-53244

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-53245

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-53246

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

CVE-2024-53247

Affected products

Known affected 6 products

Product	Identifier	Version	Remediation
Splunk Splunk Enterprise <9.1.7 Splunk / Splunk Enterprise		<9.1.7
Splunk Splunk Enterprise <9.2.4 Splunk / Splunk Enterprise		<9.2.4
Splunk Splunk Enterprise <9.3.2 Splunk / Splunk Enterprise		<9.3.2
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2

References

10 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://advisory.splunk.com/advisories/SVD-2024-1201	external
https://advisory.splunk.com/advisories/SVD-2024-1202	external
https://advisory.splunk.com/advisories/SVD-2024-1203	external
https://advisory.splunk.com/advisories/SVD-2024-1204	external
https://advisory.splunk.com/advisories/SVD-2024-1205	external
https://advisory.splunk.com/advisories/SVD-2024-1206	external
https://advisory.splunk.com//advisories/SVD-2024-1207	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Splunk Enterprise erm\u00f6glicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen, beliebigen Code auszuf\u00fchren oder unspezifische Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-3674 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3674.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-3674 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3674"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1201 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1201"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1202 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1202"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1203 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1203"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1204 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1204"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1205 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1205"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1206 vom 2024-12-10",
        "url": "https://advisory.splunk.com/advisories/SVD-2024-1206"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1207 vom 2024-12-10",
        "url": "https://advisory.splunk.com//advisories/SVD-2024-1207"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Splunk Splunk Enterprise: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:37:07.692+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2024-3674",
      "initial_release_date": "2024-12-10T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-12-10T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket \u003c10.0.2",
                  "product_id": "T048675"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket 10.0.2",
                  "product_id": "T048675-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c8.19.25 (LTS)",
                  "product_id": "T048676"
                }
              },
              {
                "category": "product_version",
                "name": "8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 8.19.25 (LTS)",
                  "product_id": "T048676-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.19.25_%28lts%29"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c9.4.13 (LTS)",
                  "product_id": "T048677"
                }
              },
              {
                "category": "product_version",
                "name": "9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 9.4.13 (LTS)",
                  "product_id": "T048677-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:9.4.13_%28lts%29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.3.2",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.3.2",
                  "product_id": "T039778"
                }
              },
              {
                "category": "product_version",
                "name": "9.3.2",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.3.2",
                  "product_id": "T039778-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.3.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.4",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.2.4",
                  "product_id": "T039779"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.4",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.2.4",
                  "product_id": "T039779-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.2.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.7",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.1.7",
                  "product_id": "T039780"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.7",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.1.7",
                  "product_id": "T039780-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.1.7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Splunk Enterprise"
          }
        ],
        "category": "vendor",
        "name": "Splunk"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-44531",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2021-44531"
    },
    {
      "cve": "CVE-2024-25710",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-25710"
    },
    {
      "cve": "CVE-2024-26308",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-26308"
    },
    {
      "cve": "CVE-2024-36114",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-36114"
    },
    {
      "cve": "CVE-2024-36129",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-36129"
    },
    {
      "cve": "CVE-2024-4067",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-4067"
    },
    {
      "cve": "CVE-2024-42459",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-42459"
    },
    {
      "cve": "CVE-2024-42460",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-42460"
    },
    {
      "cve": "CVE-2024-42461",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-42461"
    },
    {
      "cve": "CVE-2024-45296",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-45296"
    },
    {
      "cve": "CVE-2024-5535",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-5535"
    },
    {
      "cve": "CVE-2024-6531",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-6531"
    },
    {
      "cve": "CVE-2024-53243",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-53243"
    },
    {
      "cve": "CVE-2024-53244",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-53244"
    },
    {
      "cve": "CVE-2024-53245",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-53245"
    },
    {
      "cve": "CVE-2024-53246",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-53246"
    },
    {
      "cve": "CVE-2024-53247",
      "product_status": {
        "known_affected": [
          "T039780",
          "T039779",
          "T039778",
          "T048677",
          "T048676",
          "T048675"
        ]
      },
      "release_date": "2024-12-10T23:00:00.000+00:00",
      "title": "CVE-2024-53247"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

Product	Identifier	Version
vers:unknown/22.1 Oracle / Oracle / Database Server		vers:unknown/22.1
vers:unknown/13.5.0.0 Oracle / Oracle / Enterprise Manager for Oracle Database		vers:unknown/13.5.0.0
vers:oracle/>=19.3\|<=19.22 Oracle / Oracle Database Server		vers:oracle/>=19.3\|<=19.22
vers:oracle/>=19.3\|<=19.26 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:19.3-19.26:::::::*`	vers:oracle/>=19.3\|<=19.26
vers:oracle/>=21.3\|<=21.13 Oracle / Oracle Database Server		vers:oracle/>=21.3\|<=21.13
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=21.4\|<=21.16 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_workload_manager:21.4-21.16:::::::*`	vers:oracle/>=21.4\|<=21.16
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle Database Server / Oracle Database Server	`cpe:2.3:a:oracle:database_-_java_vm:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/13.5.0.0 Oracle / Oracle Enterprise Manager for Oracle Database		vers:oracle/13.5.0.0
vers:oracle/1.5.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.5.0:::::::*`	vers:oracle/1.5.0
vers:oracle/1.6.0 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.0:::::::*`	vers:oracle/1.6.0
vers:oracle/1.6.1 Oracle / Oracle NoSQL Database / Oracle NoSQL Database	`cpe:2.3:a:oracle:nosql_database:1.6.1:::::::*`	vers:oracle/1.6.1
vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0 Oracle / Oracle TimesTen In-Memory Database / Oracle TimesTen In-Memory Database	`cpe:2.3:a:oracle:timesten_in-memory_database:22.1.1.1.0-22.1.1.30.0:::::::*`	vers:oracle/>=22.1.1.1.0\|<=22.1.1.30.0
vers:semver/19.3\|<=19.26 Oracle Corporation / Oracle Database Server		vers:semver/19.3\|<=19.26
vers:semver/21.3\|<=21.17 Oracle Corporation / Oracle Database Server		vers:semver/21.3\|<=21.17
vers:semver/23.4\|<=23.7 Oracle Corporation / Oracle Database Server		vers:semver/23.4\|<=23.7
vers:oracle/25.1.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.1.0:::::::*`	vers:oracle/25.1.0
vers:oracle/25.2.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:25.2.0:::::::*`	vers:oracle/25.2.0
vers:oracle/>=23.8.0\|<=23.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:23.8.0-23.11.0:::::::*`	vers:oracle/>=23.8.0\|<=23.11.0
vers:oracle/>=24.1.0\|<=24.11.0 Oracle / Oracle Autonomous Health Framework / Autonomous Health Framework	`cpe:2.3:a:oracle:autonomous_health_framework:24.1.0-24.11.0:::::::*`	vers:oracle/>=24.1.0\|<=24.11.0
vers:oracle/21.7.1.0.0 Oracle / Oracle Essbase / Oracle Essbase	`cpe:2.3:a:oracle:essbase:21.7.1.0.0:::::::*`	vers:oracle/21.7.1.0.0
vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle / GoldenGate		vers:unknown/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:unknown/>=21.3\|<=21.17 Oracle / Oracle / GoldenGate		vers:unknown/>=21.3\|<=21.17
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10 Oracle / Oracle GoldenGate / GoldenGate Stream Analytics	`cpe:2.3:a:oracle:goldengate_stream_analytics:19.1.0.0.0-19.1.0.0.10:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.10
vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.26.0.0.250219:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.26.0.0.250219
vers:oracle/>=21.3\|<=21.17 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:21.3-21.17:::::::*`	vers:oracle/>=21.3\|<=21.17
vers:oracle/>=23.4\|<=23.7 Oracle / Oracle GoldenGate / Oracle GoldenGate	`cpe:2.3:a:oracle:goldengate:23.4-23.7:::::::*`	vers:oracle/>=23.4\|<=23.7
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:::::::*`	vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.18
vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:::::::*`	vers:oracle/>=21.3.0.0.0\|<=21.16.0.0.0
vers:oracle/>=23.4\|<=23.6 Oracle / Oracle GoldenGate / Oracle GoldenGate Big Data and Application Adapters	`cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:::::::*`	vers:oracle/>=23.4\|<=23.6
vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7 Oracle / Oracle GoldenGate Stream Analytics		vers:oracle/>=19.1.0.0.0\|<=19.1.0.0.7
vers:oracle/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:oracle/23.1
vers:oracle/<23.1 Oracle / Big Data Spatial and Graph		vers:oracle/<23.1
vers:unknown/2.0 Oracle / Big Data Spatial and Graph	`cpe:2.3:a:ibm:oracle_big_data_spatial_and_graph:2.0:::::::*`	vers:unknown/2.0
vers:unknown/2.0 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/2.0
vers:unknown/20.2 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/20.2
vers:unknown/23.1 Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/23.1 Oracle / Big Data Spatial and Graph		vers:unknown/23.1
vers:unknown/none Oracle / Oracle / Big Data Spatial and Graph		vers:unknown/none
vers:oracle/23.4.3 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.3:::::::*`	vers:oracle/23.4.3
vers:oracle/24.3.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.3.0:::::::*`	vers:oracle/24.3.0
vers:oracle/23.4.4 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.4:::::::*`	vers:oracle/23.4.4
vers:oracle/24.4.0 Oracle / Oracle Graph Server and Client / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.4.0:::::::*`	vers:oracle/24.4.0
vers:oracle/<=22.4.7 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:22.4.7_and_prior:::::::*`	vers:oracle/<=22.4.7
vers:oracle/<=23.4.2 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:23.4.2_and_prior:::::::*`	vers:oracle/<=23.4.2
vers:oracle/<=24.1.0 Oracle / Graph Server and Client	`cpe:2.3:a:oracle:graph_server_and_client:24.1.0_and_prior:::::::*`	vers:oracle/<=24.1.0
vers:oracle/3.0.6 Oracle / Oracle Big Data Spatial and Graph	`cpe:2.3:a:oracle:big_data_spatial_and_graph:3.0.6:::::::*`	vers:oracle/3.0.6
vers:oracle/12.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.1:::::::*`	vers:oracle/12.1.0.1
vers:oracle/12.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.2:::::::*`	vers:oracle/12.1.0.2
vers:oracle/12.1.0.3 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:12.1.0.3:::::::*`	vers:oracle/12.1.0.3
vers:oracle/18.1.0.0 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.0:::::::*`	vers:oracle/18.1.0.0
vers:oracle/18.1.0.1 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.1:::::::*`	vers:oracle/18.1.0.1
vers:oracle/18.1.0.2 Oracle / Oracle Secure Backup / Oracle Secure Backup	`cpe:2.3:a:oracle:secure_backup:18.1.0.2:::::::*`	vers:oracle/18.1.0.2
vers:semver/12.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.1
vers:semver/12.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.2
vers:semver/12.1.0.3 Oracle Corporation / Oracle Secure Backup		vers:semver/12.1.0.3
vers:semver/18.1.0.0 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.0
vers:semver/18.1.0.1 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.1
vers:semver/18.1.0.2 Oracle Corporation / Oracle Secure Backup		vers:semver/18.1.0.2

Action not permitted

CVE-2024-36114 (GCVE-0-2024-36114)

NCSC-2025-0123

WID-SEC-W-2024-3674

Tags

Sightings

Nomenclature