{"resultsPerPage":669,"startIndex":0,"totalResults":669,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-27T22:45:55.518","vulnerabilities":[{"cve":{"id":"CVE-2009-0901","sourceIdentifier":"cve@mitre.org","published":"2009-07-29T17:30:00.953","lastModified":"2026-05-27T17:16:16.387","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not prevent VariantClear calls on an uninitialized VARIANT, which allows remote attackers to execute arbitrary code via a malformed stream to an ATL (1) component or (2) control, related to ATL headers and error handling, aka \"ATL Uninitialized Object Vulnerability.\""},{"lang":"es","value":"La Active Template Library  (ATL) en Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 y 2008 Gold, y Visual C++ 2005 SP1 y 2008 Gold y SP1, no previene las llamadas VariantClear sobre una VARIAN sin inicializar, lo que permite a atacantes remotos ejecutar código de su elección a través de un (1) componente o (2) control ATL. Relacionado con las cabeceras ATL y manejo de errores. También conocida como \"Vulnerabilidad de objeto ATL sin inicializar\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2005:sp1_redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"FA86F8B2-0211-4FF6-BE07-2E2EC06DFC37"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"9BA98FBB-255F-4AC9-B035-54C60EEE022B"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:sp1_redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"B20EDFCC-8C10-4EBF-BCC6-1A17362E6676"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*","matchCriteriaId":"9271AF1C-9B1C-4ADB-9F54-E63EBA2910F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2005:sp1:64_bit_hosted_visual_c\\+\\+_tools:*:*:*:*:*","matchCriteriaId":"9E35016A-D55F-4607-8716-77AACB7B166C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:*:*:*:*:*:*:*","matchCriteriaId":"ED077FFC-EBCC-4CD9-BF0E-0286B99C1965"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*","matchCriteriaId":"9AB2C8C4-7E86-4736-9CE4-2E65E4EDBF02"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*","matchCriteriaId":"85959AEB-2FE5-4A25-B298-F8223CE260D6"}]}]}],"references":[{"url":"http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/35967","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/36187","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/36374","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/36746","source":"cve@mitre.org"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"cve@mitre.org"},{"url":"http://www.adobe.com/support/security/advisories/apsa09-04.html","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"cve@mitre.org"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-11.html","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"cve@mitre.org"},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/35832","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-223A.html","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"cve@mitre.org","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2009/2232","source":"cve@mitre.org"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"cve@mitre.org"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-037","source":"cve@mitre.org"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6289","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6311","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6373","source":"cve@mitre.org"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7581","source":"cve@mitre.org"},{"url":"http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/35967","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36187","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36374","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36746","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.adobe.com/support/security/advisories/apsa09-04.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-11.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/35832","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-223A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/2232","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-037","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6289","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6311","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6373","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7581","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorImpact":"Please refer to this link http://www.microsoft.com/technet/security/Bulletin/MS09-035.mspx for mitigating factors and additional information."}},{"cve":{"id":"CVE-2009-2493","sourceIdentifier":"secure@microsoft.com","published":"2009-07-29T17:30:01.233","lastModified":"2026-05-27T17:16:17.730","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not properly restrict use of OleLoadFromStream in instantiating objects from data streams, which allows remote attackers to execute arbitrary code via a crafted HTML document with an ATL (1) component or (2) control, related to ATL headers and bypassing security policies, aka \"ATL COM Initialization Vulnerability.\""},{"lang":"es","value":"La Active Template Library (ATL) en Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 y 2008 Gold y SP1, y Visual C++ 2005 SP1 y 2008 Gold y SP1 no restringe adecuadamente el uso de OleLoadFromStream en la instanciación de objetos desde el flujo de datos, lo que permite a atacantes remotos  ejecutar código de su elección a través de un documento HTML manipulado con un (1)control o (2) componente, relacionado con las cabeceras ATL y el evitar las políticas de seguridad. También conocida como \"Vulnerabilidad de Inicialización ATL COM\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2005:sp1:*:*:*:*:*:*","matchCriteriaId":"882CDAE9-EC03-48E6-814C-50236B8F0B93"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:*:*:*:*:*:*:*","matchCriteriaId":"27438900-81A7-41CD-AA17-1DA9F35C98D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:sp1:*:*:*:*:*:*","matchCriteriaId":"A4E0021F-ABB9-4FB4-BC1C-5098F2E66371"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*","matchCriteriaId":"83E7C4A0-78CF-4B56-82BF-EC932BDD8ADF"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*","matchCriteriaId":"2978BF86-5A1A-438E-B81F-F360D0E30C9C"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*","matchCriteriaId":"0C28897B-044A-447B-AD76-6397F8190177"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*","matchCriteriaId":"32623D48-7000-4C7D-823F-7D2A9841D88C"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*","matchCriteriaId":"C162FFF0-1E8F-4DCF-A08F-6C6E324ED878"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*","matchCriteriaId":"0A0D2704-C058-420B-B368-372D1129E914"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_vista:-:*:*:*:*:*:*:*","matchCriteriaId":"7CAEEA81-5037-4B68-98D9-83AAEBC98E20"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*","matchCriteriaId":"9B339C33-8896-4896-88FF-88E74FDBC543"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*","matchCriteriaId":"CE477A73-4EE4-41E9-8694-5A3D5DC88656"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2003:sp1:*:*:*:*:*:*","matchCriteriaId":"A9AD97AF-1F2A-483D-86F2-764ECEC31BD1"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*","matchCriteriaId":"9271AF1C-9B1C-4ADB-9F54-E63EBA2910F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:*:*:*:*:*:*:*","matchCriteriaId":"ED077FFC-EBCC-4CD9-BF0E-0286B99C1965"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*","matchCriteriaId":"9AB2C8C4-7E86-4736-9CE4-2E65E4EDBF02"}]}]}],"references":[{"url":"http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx","source":"secure@microsoft.com","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/35967","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/36187","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/36374","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/36746","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/38568","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/41818","source":"secure@microsoft.com"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-264648-1","source":"secure@microsoft.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"secure@microsoft.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020775.1-1","source":"secure@microsoft.com","tags":["Broken Link"]},{"url":"http://www.adobe.com/support/security/advisories/apsa09-04.html","source":"secure@microsoft.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-11.html","source":"secure@microsoft.com","tags":["Patch","Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://www.openoffice.org/security/cves/CVE-2009-2493.html","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"secure@microsoft.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-223A.html","source":"secure@microsoft.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"secure@microsoft.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-342A.html","source":"secure@microsoft.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"secure@microsoft.com"},{"url":"http://www.vupen.com/english/advisories/2009/2232","source":"secure@microsoft.com"},{"url":"http://www.vupen.com/english/advisories/2010/0366","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-037","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-055","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-072","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6245","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6304","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6421","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6473","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6621","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6716","source":"secure@microsoft.com"},{"url":"http://blogs.technet.com/srd/archive/2009/08/11/ms09-037-why-we-are-using-cve-s-already-used-in-ms09-035.aspx","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/35967","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36187","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36374","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36746","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/38568","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/41818","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-264648-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020775.1-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.adobe.com/support/security/advisories/apsa09-04.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-11.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openoffice.org/security/cves/CVE-2009-2493.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-223A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-342A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/2232","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2010/0366","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-037","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-055","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-072","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6245","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6304","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6421","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6473","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6621","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6716","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2009-2495","sourceIdentifier":"secure@microsoft.com","published":"2009-07-29T17:30:01.250","lastModified":"2026-05-27T17:16:18.143","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML document with an ATL (1) component or (2) control that triggers a buffer over-read, related to ATL headers and buffer allocation, aka \"ATL Null String Vulnerability.\""},{"lang":"es","value":"La Active Template Library (ATL) en Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 y 2008 Gold y SP1, y Visual C++ 2005 SP1 y 2008 Gold y SP1 no cumple adecuadamente con la terminación de cadena, lo que permite a atacantes remotos obtener información sensible a través de un documentos HTML manipulado con un (1) control o (2) componente ATL que provoca un desbordamiento de lectura de búfer. Relacionado con la reserva de cabeceras y búfers ATL. También conocida como \"Vulnerabilidad de cadena nula ATL\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:N/A:N","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-126"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2005:sp1_redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"FA86F8B2-0211-4FF6-BE07-2E2EC06DFC37"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"9BA98FBB-255F-4AC9-B035-54C60EEE022B"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_c\\+\\+:2008:sp1_redistribution_pkg:*:*:*:*:*:*","matchCriteriaId":"B20EDFCC-8C10-4EBF-BCC6-1A17362E6676"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2005:sp1:*:*:*:*:*:*","matchCriteriaId":"9271AF1C-9B1C-4ADB-9F54-E63EBA2910F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2005:sp1:64_bit_hosted_visual_c\\+\\+_tools:*:*:*:*:*","matchCriteriaId":"9E35016A-D55F-4607-8716-77AACB7B166C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:*:*:*:*:*:*:*","matchCriteriaId":"ED077FFC-EBCC-4CD9-BF0E-0286B99C1965"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio:2008:sp1:*:*:*:*:*:*","matchCriteriaId":"9AB2C8C4-7E86-4736-9CE4-2E65E4EDBF02"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*","matchCriteriaId":"85959AEB-2FE5-4A25-B298-F8223CE260D6"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/35967","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/36374","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/36746","source":"secure@microsoft.com"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"secure@microsoft.com"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"secure@microsoft.com"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"secure@microsoft.com"},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"secure@microsoft.com"},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"secure@microsoft.com","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"secure@microsoft.com","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6305","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6478","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7573","source":"secure@microsoft.com"},{"url":"http://marc.info/?l=bugtraq&m=126592505426855&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/35967","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36374","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36746","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-10.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-13.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.novell.com/support/viewContent.do?externalId=7004997&sliceId=1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-195A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2034","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-035","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-060","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6305","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6478","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7573","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2009-3555","sourceIdentifier":"secalert@redhat.com","published":"2009-11-09T17:30:00.407","lastModified":"2026-05-27T17:16:18.407","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a \"plaintext injection\" attack, aka the \"Project Mogul\" issue."},{"lang":"es","value":"El protocolo TLS y el protocolo SSL v3.0 y posiblemente versiones anteriores, tal y como se usa en Microsoft Internet Information Services (IIS) v7.0, mod_ssl en el servidor HTTP Apache v2.2.14 y anteriores, OpenSSL antes de v0.9.8l, GnuTLS v2.8.5 y anteriores, Mozilla Network Security Services (NSS) v3.12.4 y anteriores, y otros productos, no asocia apropiadamente la renegociación del Handshake SSL en una conexión existente, lo que permite ataques man-in-the-middle en los que el atacante inserta datos en sesiones HTTPS, y posiblemente otro tipo de sesiones protegidas por SSL o TLS, enviando una petición de autenticación que es procesada retroactivamente por un servidor en un contexto post-renegociación. Se trata de un ataque de \"inyección de texto plano\", también conocido como el problema del \"Proyecto Mogul\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:P","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-295"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-300"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","versionEndIncluding":"2.2.14","matchCriteriaId":"F1BD8600-0EF7-4612-B5C4-E327C0828479"},{"vulnerable":true,"criteria":"cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*","versionEndIncluding":"2.8.5","matchCriteriaId":"38090AC3-C511-4C40-91A5-084CBEC11F34"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:*","versionEndIncluding":"3.12.4","matchCriteriaId":"285433B6-03F9-495E-BACA-AA47A014411C"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionEndIncluding":"0.9.8k","matchCriteriaId":"EB35F63F-7856-42EE-87A6-7EC7F10C2032"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:1.0:*:openvms:*:*:*:*:*","matchCriteriaId":"718F8E8D-0940-4055-A948-96D25C79323B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*","matchCriteriaId":"C91D2DBF-6DA7-4BA2-9F29-8BD2725A4701"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*","matchCriteriaId":"4747CC68-FAF4-482F-929A-9DA6C24CB663"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*","matchCriteriaId":"A5D026D0-EF78-438D-BEDD-FC8571F3ACEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*","matchCriteriaId":"A2BCB73E-27BB-4878-AD9C-90C4F20C25A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*","matchCriteriaId":"5D37DF0F-F863-45AC-853A-3E04F9FEC7CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*","matchCriteriaId":"87614B58-24AB-49FB-9C84-E8DDBA16353B"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*","matchCriteriaId":"0F92AB32-E7DE-43F4-B877-1F41FA162EC7"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*","matchCriteriaId":"8C757774-08E7-40AA-B532-6F705C8F7639"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"036E8A89-7A16-411F-9D31-676313BB7244"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:*","matchCriteriaId":"B3BB5EDB-520B-4DEF-B06E-65CA13152824"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*","matchCriteriaId":"E44669D7-6C1E-4844-B78A-73E253A7CC17"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*","matchCriteriaId":"A2D59BD0-43DE-4E58-A057-640AB98359A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*","matchCriteriaId":"BDE52846-24EC-4068-B788-EC7F915FFF11"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","versionStartIncluding":"0.1.0","versionEndIncluding":"0.8.22","matchCriteriaId":"06B2E3E1-C2E0-4A4E-A84D-93C456E868E7"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://blogs.iss.net/archive/sslmitmiscsrf.html","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://clicky.me/tlsvuln","source":"secalert@redhat.com","tags":["Exploit","Third Party Advisory"]},{"url":"http://extendedsubset.com/?p=8","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://extendedsubset.com/Renegotiating_TLS.pdf","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://kbase.redhat.com/faq/docs/DOC-20491","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010//May/msg00001.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010//May/msg00002.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=126150535619567&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127128920008563&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127419602507642&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127557596201693&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=130497311408250&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=132077688910227&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=133469267822771&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=134254866602253&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=142660345230545&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=cryptography&m=125752275331877&w=2","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://openbsd.org/errata45.html#010_openssl","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://openbsd.org/errata46.html#004_openssl","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://osvdb.org/60521","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://osvdb.org/60972","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://osvdb.org/62210","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://osvdb.org/65202","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://seclists.org/fulldisclosure/2009/Nov/139","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://secunia.com/advisories/37291","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37292","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37320","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37383","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37399","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37453","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37501","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37504","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37604","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37640","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37656","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37675","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37859","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38003","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38020","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38056","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38241","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38484","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38687","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38781","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39127","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39136","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39242","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39243","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39278","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39292","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39317","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39461","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39500","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39628","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39632","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39713","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39819","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40070","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40545","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40747","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40866","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41480","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41490","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41818","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41967","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41972","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42377","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42379","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42467","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42724","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42733","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42808","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42811","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42816","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/43308","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/44183","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/44954","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/48577","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-200912-01.xml","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-201203-22.xml","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-201406-32.xml","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://securitytracker.com/id?1023148","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://support.apple.com/kb/HT4004","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT4170","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT4171","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100070150","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100081611","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100114315","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100114327","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.citrix.com/article/CTX123359","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://sysoev.ru/nginx/patch.cve-2009-3555.txt","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://ubuntu.com/usn/usn-923-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://wiki.rpath.com/Advisories:rPSA-2009-0155","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21426108","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21432298","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg24006386","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg24025312","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.arubanetworks.com/support/alerts/aid-020810.txt","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.betanews.com/article/1257452450","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2009/dsa-1934","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2011/dsa-2141","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3253","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ietf.org/mail-archive/web/tls/current/msg03928.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ietf.org/mail-archive/web/tls/current/msg03948.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ingate.com/Relnote.php?ver=481","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/120541","source":"secalert@redhat.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.links.org/?p=780","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.links.org/?p=786","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.links.org/?p=789","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:076","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:084","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:089","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.mozilla.org/security/announce/2010/mfsa2010-22.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openoffice.org/security/cves/CVE-2009-3555.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openssl.org/news/secadv_20091111.txt","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/05/3","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/05/5","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/06/3","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/07/3","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/20/1","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/23/10","source":"secalert@redhat.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.opera.com/docs/changelogs/unix/1060/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.opera.com/support/search/view/944/","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0119.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0130.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0155.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0165.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0167.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0337.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0338.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0339.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0768.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0770.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0786.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0807.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0865.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0986.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0987.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0880.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/507952/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/508075/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/508130/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/515055/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/516397/100/0/threaded","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/522176","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/36935","source":"secalert@redhat.com","tags":["Exploit","Patch","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023163","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023204","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023205","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023206","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023207","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023208","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023209","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023210","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023211","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023212","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023213","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023214","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023215","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023216","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023217","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023218","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023219","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023224","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023243","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023270","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023271","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023272","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023273","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023274","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023275","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023411","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023426","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023427","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023428","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1024789","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.tombom.co.uk/blog/?p=85","source":"secalert@redhat.com","tags":["Broken Link"]},{"url":"http://www.ubuntu.com/usn/USN-1010-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-1","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-4","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-5","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA10-222A.html","source":"secalert@redhat.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA10-287A.html","source":"secalert@redhat.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2010-0019.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2011-0003.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3164","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3165","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3205","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3220","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3310","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3313","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3353","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3354","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3484","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3521","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3587","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0086","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0173","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0748","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0848","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0916","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0933","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0982","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0994","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1054","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1107","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1191","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1350","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1639","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1673","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1793","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/2010","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/2745","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3069","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3086","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3126","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0032","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0033","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0086","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html","source":"secalert@redhat.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=526689","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=545755","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=533125","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049","source":"secalert@redhat.com","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/54158","source":"secalert@redhat.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://kb.bluecoat.com/index?page=content&id=SA50","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E","source":"secalert@redhat.com"},{"url":"https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E","source":"secalert@redhat.com"},{"url":"https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E","source":"secalert@redhat.com"},{"url":"https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"http://archives.neohapsis.com/archives/bugtraq/2013-11/0120.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://blog.g-sec.lu/2009/11/tls-sslv3-renegotiation-vulnerability.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://blogs.iss.net/archive/sslmitmiscsrf.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://clicky.me/tlsvuln","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"http://extendedsubset.com/?p=8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://extendedsubset.com/Renegotiating_TLS.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01945686","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436041","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://kbase.redhat.com/faq/docs/DOC-20491","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010//May/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010//May/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039957.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040652.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00029.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00009.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=apache-httpd-announce&m=125755783724966&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=126150535619567&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127128920008563&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127419602507642&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=127557596201693&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=130497311408250&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=132077688910227&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=133469267822771&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=134254866602253&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=142660345230545&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://marc.info/?l=cryptography&m=125752275331877&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://openbsd.org/errata45.html#010_openssl","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://openbsd.org/errata46.html#004_openssl","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://osvdb.org/60521","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://osvdb.org/60972","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://osvdb.org/62210","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://osvdb.org/65202","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://seclists.org/fulldisclosure/2009/Nov/139","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://secunia.com/advisories/37291","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37292","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37320","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37383","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37399","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37453","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37501","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37504","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37604","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37656","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37675","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/37859","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38003","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38020","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38056","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38241","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38484","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38687","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/38781","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39127","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39136","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39242","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39243","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39278","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39292","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39317","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39461","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39500","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39628","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39632","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39713","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/39819","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40070","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40545","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40747","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/40866","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41480","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41490","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41818","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41967","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/41972","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42377","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42379","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42467","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42724","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42733","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42808","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42811","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/42816","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/43308","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/44183","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/44954","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://secunia.com/advisories/48577","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-200912-01.xml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-201203-22.xml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://security.gentoo.org/glsa/glsa-201406-32.xml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://securitytracker.com/id?1023148","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.597446","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-273350-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-273029-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-274990-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021653.1-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021752.1-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://support.apple.com/kb/HT4004","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT4170","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT4171","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100070150","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100081611","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100114315","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.avaya.com/css/P8/documents/100114327","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.citrix.com/article/CTX123359","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.zeus.com/zws/media/docs/4.3/RELEASE_NOTES","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://support.zeus.com/zws/news/2010/01/13/zws_4_3r5_released","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://sysoev.ru/nginx/patch.cve-2009-3555.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://tomcat.apache.org/native-doc/miscellaneous/changelog-1.1.x.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://ubuntu.com/usn/usn-923-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://wiki.rpath.com/Advisories:rPSA-2009-0155","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC67848","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC68054","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IC68055","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM12247","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21426108","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21432298","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg24006386","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg24025312","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=PM00675&apar=only","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.arubanetworks.com/support/alerts/aid-020810.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.betanews.com/article/1257452450","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2009/dsa-1934","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2011/dsa-2141","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3253","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ietf.org/mail-archive/web/tls/current/msg03928.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ietf.org/mail-archive/web/tls/current/msg03948.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ingate.com/Relnote.php?ver=481","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.kb.cert.org/vuls/id/120541","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.links.org/?p=780","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.links.org/?p=786","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.links.org/?p=789","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:076","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:084","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:089","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.mozilla.org/security/announce/2010/mfsa2010-22.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openoffice.org/security/cves/CVE-2009-3555.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openssl.org/news/secadv_20091111.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/05/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/05/5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/06/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/07/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/20/1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2009/11/23/10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.opera.com/docs/changelogs/unix/1060/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.opera.com/support/search/view/944/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.proftpd.org/docs/RELEASE_NOTES-1.3.2c","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0119.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0130.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0155.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0165.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0167.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0337.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0338.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0339.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0768.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0770.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0786.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0807.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0865.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0986.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2010-0987.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.redhat.com/support/errata/RHSA-2011-0880.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securegoose.org/2009/11/tls-renegotiation-vulnerability-cve.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/archive/1/507952/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/508075/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/508130/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/515055/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/516397/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/archive/1/522176","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/36935","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Patch","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023163","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023204","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023205","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023206","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023207","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023208","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023209","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023210","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023211","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023212","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023213","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023214","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023215","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023216","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023217","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023218","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023219","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023224","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023243","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023270","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023271","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023272","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023273","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023274","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023275","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023411","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023426","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023427","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1023428","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id?1024789","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.tombom.co.uk/blog/?p=85","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"http://www.ubuntu.com/usn/USN-1010-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-4","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-927-5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA10-222A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA10-287A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2010-0019.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vmware.com/security/advisories/VMSA-2011-0003.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3164","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3165","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3205","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3220","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3310","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3313","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3353","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3354","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3484","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3521","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2009/3587","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0086","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0173","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0748","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0848","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0916","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0933","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0982","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/0994","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1054","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1107","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1191","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1350","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1639","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1673","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/1793","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/2010","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/2745","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3069","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3086","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2010/3126","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0032","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0033","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.vupen.com/english/advisories/2011/0086","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://xss.cx/examples/plesk-reports/plesk-parallels-controlpanel-psa.v.10.3.1_build1013110726.09%20os_redhat.el6-billing-system-plugin-javascript-injection-example-poc-report.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=526689","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=545755","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=533125","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-049","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/54158","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150888","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kb.bluecoat.com/index?page=content&id=SA50","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3Cdev.tomcat.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3Cdev.tomcat.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10088","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11578","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11617","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7315","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7478","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7973","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8366","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8535","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.f5.com/kb/en-us/solutions/public/10000/700/sol10737.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00428.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00442.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00449.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00634.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00645.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00944.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01029.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.exploit-db.com/exploits/10579","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}],"vendorComments":[{"organization":"Red Hat","comment":"Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-3555\n\nAdditional information can be found in the Red Hat Knowledgebase article:\nhttp://kbase.redhat.com/faq/docs/DOC-20491","lastModified":"2009-11-20T00:00:00"}]}},{"cve":{"id":"CVE-2015-2808","sourceIdentifier":"cve@mitre.org","published":"2015-04-01T02:00:35.097","lastModified":"2026-05-27T18:16:19.687","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the \"Bar Mitzvah\" issue."},{"lang":"es","value":"El algoritmo RC4, utilizado en el protocolo TLS y el protocolo SSL, no combina correctamente los datos de estados con los datos de claves durante la fase de inicialización, lo que facilita a atacantes remotos realizar ataques de recuperación de texto claro contra los bytes iniciales de un flujo mediante la captura de trafico de la red que ocasionalmente depende de claves afectadas por la debilidad de la invariabilidad (Invariance Weakness), y posteriormente utilizar un acercamiento de fuerza bruta que involucra valores LSB, también conocido como el problema de 'Bar Mitzvah'."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-327"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_application_session_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndIncluding":"3.9.0","matchCriteriaId":"C306035B-10B2-4BC5-B6DE-194BE343DA8E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*","versionEndExcluding":"9.9.2","matchCriteriaId":"D3AB62FE-AB1A-4162-8A51-E34EDE33DD85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:11.1.1.7.0:*:*:*:*:*:*:*","matchCriteriaId":"911FBD5E-213D-482F-81A9-C3B8CE7D903A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:11.1.1.9.0:*:*:*:*:*:*:*","matchCriteriaId":"EBD2676F-EE9D-4462-ABA5-C11CE726849C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:12.1.3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"6505AE29-5091-4C72-AF6B-932DEF53A8D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:12.2.1.1.0:*:*:*:*:*:*:*","matchCriteriaId":"4EC475C1-A339-4C49-B6BA-A0E4D6FDF5DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:http_server:12.2.1.2.0:*:*:*:*:*:*:*","matchCriteriaId":"38A45A86-3B7E-4245-B717-2A6E868BE6BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:integrated_lights_out_manager_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"3.0.0","versionEndIncluding":"3.2.11","matchCriteriaId":"24EDBB8B-1AFB-498D-B78C-7BC72B8C1085"},{"vulnerable":true,"criteria":"cpe:2.3:o:oracle:integrated_lights_out_manager_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0.0","versionEndIncluding":"4.0.4","matchCriteriaId":"F3024389-3D4A-4E19-BE42-DAF9EA51D471"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*","matchCriteriaId":"85EA16E0-9261-45C4-840F-5366E9EAC5E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*","matchCriteriaId":"133AAFA7-AF42-4D7B-8822-AA2E85611BF5"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","matchCriteriaId":"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"319EC0C6-94C5-494A-9C5D-DC5124DFC8E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.1:*:*:*:*:*:*:*","matchCriteriaId":"A67A7B7A-998D-4B8C-8831-6E58406565FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"AE1D81A1-CD24-4B17-8AFD-DC95E90AD7D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"807C024A-F8E8-4B48-A349-4C68CD252CA1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"F96E3779-F56A-45FF-BB3D-4980527D721E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*","matchCriteriaId":"0CF73560-2F5B-4723-A8A1-9AADBB3ADA00"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"5BF3C7A5-9117-42C7-BEA1-4AA378A582EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"83737173-E12E-4641-BC49-0BD84A6B29D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*","matchCriteriaId":"54D669D4-6D7E-449D-80C1-28FA44F06FFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"16E6D998-B41D-4B49-9E00-8336D2E40A4A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"98381E61-F082-4302-B51F-5648884F998B"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"D99A687E-EAE6-417E-A88E-D0082BC194CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B353CE99-D57C-465B-AAB0-73EF581127D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"7431ABC1-9252-419E-8CC1-311B41360078"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*","matchCriteriaId":"17F256A9-D3B9-4C72-B013-4EFD878BFEA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*","matchCriteriaId":"D0AC5CD5-6E58-433C-9EB3-6DFE5656463E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5ED5807-55B7-47C5-97A6-03233F4FBC3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3:*:*:*:*:*:*","matchCriteriaId":"58D3B6FD-B474-4B09-B644-A8634A629280"},{"vulnerable":true,"criteria":"cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*","matchCriteriaId":"F892F1B0-514C-42F7-90AE-12ACDFDC1033"},{"vulnerable":true,"criteria":"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*","matchCriteriaId":"A10BC294-9196-425F-9FB0-B1625465B47F"},{"vulnerable":true,"criteria":"cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*","matchCriteriaId":"03117DF1-3BEC-4B8D-AD63-DBBDB2126081"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*","matchCriteriaId":"3ED68ADD-BBDA-4485-BC76-58F011D72311"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp4:*:*:*:*:*:*","matchCriteriaId":"17D4B6F2-514D-4BC2-B2C5-4E2FCCAC594C"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*","matchCriteriaId":"D2DF4815-B8CB-4AD3-B91D-2E09A8E318E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*","matchCriteriaId":"35BBD83D-BDC7-4678-BE94-639F59281139"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*","matchCriteriaId":"67960FB9-13D1-4DEE-8158-31BF31BCBE6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*","matchCriteriaId":"CB6476C7-03F2-4939-AB85-69AA524516D9"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*","matchCriteriaId":"2470C6E8-2024-4CF5-9982-CFF50E88EAE9"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*","matchCriteriaId":"15FC9014-BD85-4382-9D04-C0703E901D7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*","matchCriteriaId":"2F7F8866-DEAD-44D1-AB10-21EE611AA026"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*","matchCriteriaId":"1831D45A-EE6E-4220-8F8C-248B69520948"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:suse:manager:1.7:*:*:*:*:*:*:*","matchCriteriaId":"2C9E2D37-9F56-49E0-BB28-56FB755CE078"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*","matchCriteriaId":"88D6E858-FD8F-4C55-B7D5-CEEDA2BBA898"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*","matchCriteriaId":"8D305F7A-D159-4716-AB26-5E38BB5CD991"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*","matchCriteriaId":"815D70A8-47D3-459C-A32C-9FEACA0659D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*","matchCriteriaId":"F38D3B7E-8429-473F-BB31-FC3583EE5A5B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*","matchCriteriaId":"D4840254-CC76-4113-BC61-360BD15582B9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*","matchCriteriaId":"1D8B549B-E57B-4DFE-8A13-CAB06B5356B3"},{"vulnerable":false,"criteria":"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fujitsu:sparc_enterprise_m3000_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"xcp","versionEndExcluding":"xcp_1121","matchCriteriaId":"9DBE3B60-DED8-4F47-A60F-410ECB873BAE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:fujitsu:sparc_enterprise_m3000:-:*:*:*:*:*:*:*","matchCriteriaId":"AB54B753-F066-4387-B0C3-43E647A42EBE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fujitsu:sparc_enterprise_m4000_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"xcp","versionEndExcluding":"xcp_1121","matchCriteriaId":"5BBD38A2-1B17-4B28-9FE1-6D62A6337C12"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:fujitsu:sparc_enterprise_m4000:-:*:*:*:*:*:*:*","matchCriteriaId":"1846C0CA-AE13-435F-BF91-EEE0CC311DD5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fujitsu:sparc_enterprise_m5000_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"xcp","versionEndExcluding":"xcp_1121","matchCriteriaId":"5884F45B-F822-46B9-A0DC-6B59A3C3E7E0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:fujitsu:sparc_enterprise_m5000:-:*:*:*:*:*:*:*","matchCriteriaId":"C2EDCD99-9677-45A7-9221-3A6A41917A7C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fujitsu:sparc_enterprise_m8000_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"xcp","versionEndExcluding":"xcp_1121","matchCriteriaId":"9ED7A13F-9510-4FA0-96A6-D2D34D49545F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:fujitsu:sparc_enterprise_m8000:-:*:*:*:*:*:*:*","matchCriteriaId":"9581ABD4-5ED6-4EC5-8A0B-1D7A449C10D5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fujitsu:sparc_enterprise_m9000_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"xcp","versionEndExcluding":"xcp_1121","matchCriteriaId":"0C4C1EC1-19BE-4E1E-8F56-47A83AD0410D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:fujitsu:sparc_enterprise_m9000:-:*:*:*:*:*:*:*","matchCriteriaId":"0A2CEAD6-9F8C-411C-9107-BA858CB8A31B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:e6000_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"075D228F-B3F3-44A0-9C93-510E2EF7BE16"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:e6000:-:*:*:*:*:*:*:*","matchCriteriaId":"1F66D29E-0B7F-45D3-BECC-21952F4A4850"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:e9000_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CA0AE74D-A6FC-44A1-80D4-CB5039FD31AC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:e9000:-:*:*:*:*:*:*:*","matchCriteriaId":"741F1B4C-D77D-416F-B6D9-0359F391D96F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_18500_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"929D8B7A-4535-49EA-9DD6-AB83174337AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_18500:-:*:*:*:*:*:*:*","matchCriteriaId":"B7AAE27E-EB13-43E2-A7F4-7973977AD936"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_18800_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8E00020C-C1FB-425B-B285-BCF7450F76B0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_18800:-:*:*:*:*:*:*:*","matchCriteriaId":"B196FDFF-8A1D-4E7D-895A-1D09ADACC396"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_18800f_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"47CA0343-7F2A-45BE-B7A2-8F91F31C0912"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_18800f:-:*:*:*:*:*:*:*","matchCriteriaId":"4E675B6C-C847-486F-8946-F98E271E1DC0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_9000_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"45D279CD-1344-4200-B4DF-303739323D19"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_9000:-:*:*:*:*:*:*:*","matchCriteriaId":"AEC54023-CF84-4095-A3E8-2D6E334768E9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_cse_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4D5F81B5-BD6E-4B10-8EB9-AE0929E3DCE6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_cse:-:*:*:*:*:*:*:*","matchCriteriaId":"7E9846D2-4A8C-421E-8FE0-F6091DD2B30E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_hvs85t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"C2453CC3-FDD3-4C42-9D17-C231DA2D1F41"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_hvs85t:-:*:*:*:*:*:*:*","matchCriteriaId":"675CCB4F-BB76-45DC-9E6E-3BD279995084"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_s2600t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CBD74E7B-DB83-44DF-9A0B-D2EFF346855A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_s2600t:-:*:*:*:*:*:*:*","matchCriteriaId":"5FFC0113-86D7-45B1-975F-B24AF1951C4A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_s5500t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6E3E931B-BD89-48D1-BE5F-0BDBF78914C0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_s5500t:-:*:*:*:*:*:*:*","matchCriteriaId":"F36770F0-2E40-42FF-BD7B-7AE2C84E62A2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_s5600t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"63E1D8ED-A4EC-46B4-A0C0-8F46262F1D2F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_s5600t:-:*:*:*:*:*:*:*","matchCriteriaId":"6830C365-357D-41A3-8AA7-3B4854260762"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_s5800t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7A307235-4B7B-40EE-807A-9C8FFD8DF72C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_s5800t:-:*:*:*:*:*:*:*","matchCriteriaId":"866A8777-DB2A-4915-8DA6-1AF751742354"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_s6800t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"488319BB-6D39-4AA5-85A8-840EF46227F4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_s6800t:-:*:*:*:*:*:*:*","matchCriteriaId":"C1F50E5B-8733-43AB-B6CF-66AC7305E2DB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:oceanstor_vis6600t_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"0BC3C090-EB04-4A0D-8644-51002CF2ABF5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:oceanstor_vis6600t:-:*:*:*:*:*:*:*","matchCriteriaId":"4D0988C3-BAE5-4B5A-92FC-9D275B4DE9F5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:quidway_s9300_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4F01C05D-6937-4FAD-A0E1-6168EE1D7CE4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:quidway_s9300:-:*:*:*:*:*:*:*","matchCriteriaId":"2E756FE8-F106-4BFD-B33B-CC198363D2FD"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s7700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CF102265-497A-4766-80C8-323D511B4EAF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*","matchCriteriaId":"8769C2C4-E333-432B-8943-CFDFAE013379"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s7700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CF102265-497A-4766-80C8-323D511B4EAF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*","matchCriteriaId":"8769C2C4-E333-432B-8943-CFDFAE013379"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:9700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4A3C463F-2C0B-4269-95ED-A578C01E0F55"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:9700:-:*:*:*:*:*:*:*","matchCriteriaId":"D2A9F6EB-8B6E-465C-B441-C4861771861E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:9700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4A3C463F-2C0B-4269-95ED-A578C01E0F55"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:9700:-:*:*:*:*:*:*:*","matchCriteriaId":"D2A9F6EB-8B6E-465C-B441-C4861771861E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s12700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"89D69269-4251-4CE9-AD67-4968A917C1E0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*","matchCriteriaId":"138C1E57-176C-46B1-9704-D9C8391CC802"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s12700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"89D69269-4251-4CE9-AD67-4968A917C1E0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*","matchCriteriaId":"138C1E57-176C-46B1-9704-D9C8391CC802"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s2700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"540F0482-7F5E-4688-B282-97A6576E0A6D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s2700:-:*:*:*:*:*:*:*","matchCriteriaId":"DD2CD071-58E4-4061-8217-990453213470"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s3700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"789A2B2D-99B1-4AA5-BB39-65D58D8B59B0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s3700:-:*:*:*:*:*:*:*","matchCriteriaId":"B7F84390-E120-406B-967D-B473EB110EA9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700ei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"B9FD39BD-0D24-4C1E-969C-C9509AE8A0D8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700ei:-:*:*:*:*:*:*:*","matchCriteriaId":"1B0BE6C3-1FB2-4718-AA9D-1A8D8663C195"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700hi_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"409A4E21-B8D8-445F-A9C4-3CDA73189CA9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700hi:-:*:*:*:*:*:*:*","matchCriteriaId":"ED775342-B93C-4DF9-BC62-B6BE549F1B29"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700si_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"31FB20E5-4830-411C-AE4B-6B2E180C0972"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700si:-:*:*:*:*:*:*:*","matchCriteriaId":"24C4DC87-DE8C-461F-A555-F6E9A71C1C48"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5710ei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"95E7ABCB-D0C0-4C18-A7AC-8C1EBD5E4E87"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5710ei:-:*:*:*:*:*:*:*","matchCriteriaId":"A2D59F3D-CC4A-4ADD-B83C-5CE3F0546622"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5710hi_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"065508F6-D026-4C99-B6F9-AE25CB1124D3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5710hi:-:*:*:*:*:*:*:*","matchCriteriaId":"4DFF0F26-CDF2-49B0-AED7-EEA4B9E99E8C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s6700_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"86E35CBD-4488-4E64-BEA2-A2E89A4BB9E2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*","matchCriteriaId":"DA7AC10D-B0DD-4206-8642-134DDD585C06"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s2750_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A0C6E3C4-5677-49B6-9D35-FAC2E550F311"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s2750:-:*:*:*:*:*:*:*","matchCriteriaId":"B7859972-B7B8-4619-AAED-22B6B14852BC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700li_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1755FB01-C830-4147-B0BF-7D422A7D2181"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700li:-:*:*:*:*:*:*:*","matchCriteriaId":"21B89917-2B3D-4BA5-8836-ADEECF46E976"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700s-li_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8DF808C1-3081-4FC7-8661-FBF6A04761B6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700s-li:-:*:*:*:*:*:*:*","matchCriteriaId":"86FFC3BE-77A0-4202-9AE0-06D8D67F6539"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5720hi_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8A960DA7-8B35-43B3-B15F-F3F7E14BF308"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5720hi:-:*:*:*:*:*:*:*","matchCriteriaId":"CB64BC36-693E-4101-9C13-4A4C572A4EDE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s2750_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A0C6E3C4-5677-49B6-9D35-FAC2E550F311"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s2750:-:*:*:*:*:*:*:*","matchCriteriaId":"B7859972-B7B8-4619-AAED-22B6B14852BC"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700li_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1755FB01-C830-4147-B0BF-7D422A7D2181"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700li:-:*:*:*:*:*:*:*","matchCriteriaId":"21B89917-2B3D-4BA5-8836-ADEECF46E976"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5700s-li_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8DF808C1-3081-4FC7-8661-FBF6A04761B6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5700s-li:-:*:*:*:*:*:*:*","matchCriteriaId":"86FFC3BE-77A0-4202-9AE0-06D8D67F6539"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5720hi_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8A960DA7-8B35-43B3-B15F-F3F7E14BF308"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5720hi:-:*:*:*:*:*:*:*","matchCriteriaId":"CB64BC36-693E-4101-9C13-4A4C572A4EDE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:s5720ei_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6A799E13-49E1-4CFB-BB7D-5E528C7E0FE3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:s5720ei:-:*:*:*:*:*:*:*","matchCriteriaId":"D7B06975-BD37-452D-9782-B768610D3777"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:te60_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D65BF93A-9246-48CB-8510-F6B0380F48D9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:huawei:te60:-:*:*:*:*:*:*:*","matchCriteriaId":"999117E9-90C8-4E76-90B5-7D364C0B84BF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:oceanstor_replicationdirector:v100r003c00:*:*:*:*:*:*:*","matchCriteriaId":"0A0D7527-BCA2-4CF5-A793-1C01F6570679"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:policy_center:v100r003c00:*:*:*:*:*:*:*","matchCriteriaId":"95CA0A4C-2571-4593-A075-9A6A7EABBB33"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:policy_center:v100r003c10:*:*:*:*:*:*:*","matchCriteriaId":"16D46E9E-7F34-49C4-B56F-9090157FAD6E"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:smc2.0:v100r002c01:*:*:*:*:*:*:*","matchCriteriaId":"8D6E37DD-6CEA-443A-80C2-79E28C78D7CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:smc2.0:v100r002c02:*:*:*:*:*:*:*","matchCriteriaId":"BE1A9027-21FC-45E0-98B2-BFB8B5BE484D"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:smc2.0:v100r002c03:*:*:*:*:*:*:*","matchCriteriaId":"EC8620BB-7730-4C8F-8B4B-21389636B3C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:smc2.0:v100r002c04:*:*:*:*:*:*:*","matchCriteriaId":"D971D78C-A6F3-438D-A292-54A9A226FFE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:ultravr:v100r003c00:*:*:*:*:*:*:*","matchCriteriaId":"648D923E-BF31-4DF4-B160-66874A8E45AF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_metrics_manager:10.1:*:*:*:*:*:*:*","matchCriteriaId":"23F3243D-14BB-45F4-BBF6-DD45B8729B6B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_metrics_manager:10.1.1:*:*:*:*:*:*:*","matchCriteriaId":"97449883-5401-42C0-8FF1-6A5BEC7BC829"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_metrics_manager:10.2:*:*:*:*:*:*:*","matchCriteriaId":"2B2DDB90-C6A1-4EE5-96F2-F0A33B2F79A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_metrics_manager:10.2.1:*:*:*:*:*:*:*","matchCriteriaId":"E43C2590-059B-43BE-BFD1-7B0D1020D324"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_metrics_manager:10.2.2:*:*:*:*:*:*:*","matchCriteriaId":"379CF92E-AFD1-4744-AC07-6A495548F121"}]}]}],"references":[{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143456209711959&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143629696317098&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143741441012338&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143817021313142&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143817899717054&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143818140118771&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144043644216842&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144059660127919&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144059703728085&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060576831314&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060606031437&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144069189622016&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144102017024820&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104533800819&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104565600964&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144493176821532&w=2","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1006.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1007.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1020.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1021.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1091.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1228.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1229.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1230.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1241.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1242.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1243.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1526.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21903565","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960015","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960769","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3316","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3339","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/hw-454055","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/73684","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/91787","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032599","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032600","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032707","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032708","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032734","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032788","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032858","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032868","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032910","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032990","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033071","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033072","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033386","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033415","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033431","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033432","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033737","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033769","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036222","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2696-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2706-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://kb.juniper.net/JSA10783","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10163","source":"cve@mitre.org","tags":["Broken Link"]},{"url":"https://security.gentoo.org/glsa/201512-10","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf","source":"cve@mitre.org","tags":["Technical Description","Third Party Advisory"]},{"url":"https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/","source":"cve@mitre.org"},{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143456209711959&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143629696317098&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143741441012338&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143817021313142&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143817899717054&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143818140118771&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144043644216842&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144059660127919&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144059703728085&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060576831314&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060606031437&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144069189622016&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144102017024820&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104533800819&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104565600964&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144493176821532&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1091.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1228.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1229.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1230.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1241.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1242.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1243.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1526.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV71888","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV71892","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21903565","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960015","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960769","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3316","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3339","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/hw-454055","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/73684","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/91787","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032599","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032600","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032707","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032708","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032734","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032788","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032858","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032868","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032910","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032990","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033071","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033072","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033386","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033415","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033431","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033432","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033737","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033769","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036222","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.ubuntu.com/usn/USN-2696-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2706-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-454055.htm","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04687922","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773256","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04708650","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04711380","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193347","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289935","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05336888","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kb.juniper.net/JSA10783","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10163","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"https://security.gentoo.org/glsa/201512-10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098709","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://www.secpod.com/blog/cve-2015-2808-bar-mitzvah-attack-in-rc4-2/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2015-4000","sourceIdentifier":"cve@mitre.org","published":"2015-05-21T00:59:00.087","lastModified":"2026-05-27T17:16:21.013","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue."},{"lang":"es","value":"El protocolo TLS 1.2 y anteriores, cuando una suite de cifrado DHE_EXPORT está habilitada en un servidor pero no en un cliente, no transporta una elección DHE_EXPORT, lo que permite a atacantes man-in-the-middle realizar ataques de degradación del cifrado mediante la rescritura de un ClientHello con DHE remplazado por DHE_EXPORT y posteriormente la rescritura de un ServerHello con DHE_EXPORT remplazado por DHE, también conocido como el problema 'Logjam'."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}],"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-310"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.1","versionEndIncluding":"1.0.1m","matchCriteriaId":"51F16DD0-B15A-4B29-B68A-D6ABA0BF9623"},{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.2","versionEndIncluding":"1.0.2a","matchCriteriaId":"86B99FE0-EFEF-4C34-9790-A14504D701C5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*","matchCriteriaId":"B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*","matchCriteriaId":"B5A6F2F3-4894-4392-8296-3B8DD2679084"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*","matchCriteriaId":"49A63F39-30BE-443F-AF10-6245587D3359"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*","matchCriteriaId":"F38D3B7E-8429-473F-BB31-FC3583EE5A5B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","versionEndIncluding":"1.0.1m","matchCriteriaId":"C4D0AB50-9195-4B1B-BB76-00F0A34C9389"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hp:hp-ux:b.11.31:*:*:*:*:*:*:*","matchCriteriaId":"B64BBA96-FB3C-46AC-9A29-50EE02714FE9"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:content_manager:8.5:*:*:*:*:enterprise:*:*","matchCriteriaId":"EB672C2E-8ABF-40CD-97DA-28D939DE4C63"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jrockit:r28.3.6:*:*:*:*:*:*:*","matchCriteriaId":"228C7B8D-18EE-444A-8067-6C222844FB8C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.6.0:update95:*:*:*:*:*:*","matchCriteriaId":"2755C397-75DF-4110-8C8A-05EFDFFF9BC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update75:*:*:*:*:*:*","matchCriteriaId":"D084DBE9-BF2F-4A9B-8FDE-A9A608E6B40F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update80:*:*:*:*:*:*","matchCriteriaId":"18FB6138-2B3D-4C4B-8647-3D1646165641"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update_33:*:*:*:*:*:*","matchCriteriaId":"49B3533A-57B1-4EDA-9434-D75AE837F2C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update45:*:*:*:*:*:*","matchCriteriaId":"914D54AC-EAAE-4A01-BA88-7F245BDA47C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.6.0:update_95:*:*:*:*:*:*","matchCriteriaId":"33DD9C2A-9C6E-407B-8110-2EC7906DE036"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update_75:*:*:*:*:*:*","matchCriteriaId":"88FA3ACA-B2FC-4D9C-B67E-35272514FB84"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update_80:*:*:*:*:*:*","matchCriteriaId":"17B87292-EDBB-4D5A-8874-7405F040FAA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update_33:*:*:*:*:*:*","matchCriteriaId":"366E2702-633C-4D4C-ACF8-4CBEC66719F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update_45:*:*:*:*:*:*","matchCriteriaId":"8CFE55B4-9A07-4E88-98AC-8345243AEF79"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_desktop:12:*:*:*:*:*:*:*","matchCriteriaId":"F1EB0F28-F23A-4969-8A3E-66DA2EFA40C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11.0:sp4:*:*:*:*:*:*","matchCriteriaId":"D5BAC17C-EF31-4E94-9020-47B781AD94B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*","matchCriteriaId":"DB2A1559-651C-46B0-B436-8E03DC8A60D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*","matchCriteriaId":"9C649194-B8C2-49F7-A819-C635EE584ABF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*","versionEndIncluding":"8.3","matchCriteriaId":"EB31BE7C-CB6D-447E-AFF8-618998950FC5"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionEndIncluding":"10.10.3","matchCriteriaId":"68566BD8-D5DD-4747-9C9A-59154400EBFA"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:network_security_services:3.19:*:*:*:*:*:*:*","matchCriteriaId":"C6809678-475F-4703-BC9E-31EC8CAD3A24"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:sparc-opl_service_processor:*:*:*:*:*:*:*:*","versionEndIncluding":"1121","matchCriteriaId":"6AF02A45-1811-44F2-B3C9-90C11F5DF6DF"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apple:safari:-:*:*:*:*:*:*:*","matchCriteriaId":"AFDA34B4-65B4-41A5-AC22-667C8D8FF4B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:-:*:*:*:*:*:*:*","matchCriteriaId":"39B565E1-C2F1-44FC-A517-E3130332B17C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:-:*:*:*:*:*:*:*","matchCriteriaId":"C37BA825-679F-4257-9F2B-CE2318B75396"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:-:*:*:*:*:*:*:*","matchCriteriaId":"97D4FFCF-5309-43B6-9FD5-680C6D535A7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:opera:opera_browser:-:*:*:*:*:*:*:*","matchCriteriaId":"4545786D-3129-4D92-B218-F4A92428ED48"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*","matchCriteriaId":"5AADD23B-A8AF-4679-990D-C29A1D6EB5CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:39.0:*:*:*:*:*:*:*","matchCriteriaId":"7B692B58-6FB8-455F-86C0-35E0F216A736"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox_esr:31.8:*:*:*:*:*:*:*","matchCriteriaId":"FA389FFB-2289-4BFB-90A1-0E7EC42FFCEB"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:seamonkey:2.35:*:*:*:*:*:*:*","matchCriteriaId":"DA79F816-D26E-4A0D-8CD8-994EBB42C822"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:thunderbird:31.8:*:*:*:*:*:*:*","matchCriteriaId":"1C87BCC3-0315-4B3C-BFCD-1E218B475251"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:thunderbird:38.1:*:*:*:*:*:*:*","matchCriteriaId":"4C00748D-ECFC-4ACA-964B-92330FE7B0EE"},{"vulnerable":true,"criteria":"cpe:2.3:o:mozilla:firefox_os:2.2:*:*:*:*:*:*:*","matchCriteriaId":"E50128DD-9997-49E6-A47E-6A0B7959B3AA"}]}]}],"references":[{"url":"http://aix.software.ibm.com/aix/efixes/security/sendmail_advisory2.asc","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgery","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.asc","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04876402","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04949778","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10681","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159314.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159351.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160117.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00001.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2015-07/msg00016.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2015-10/msg00011.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-02/msg00094.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-02/msg00097.html","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143506486712441&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143557934009303&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143558092609708&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143628304012255&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143637549705650&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143655800220052&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143880121627664&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144043644216842&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144050121701297&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060576831314&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060606031437&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144061542602287&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144069189622016&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144102017024820&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104533800819&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144493176821532&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=145409266329539&w=2","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://openwall.com/lists/oss-security/2015/05/20/8","source":"cve@mitre.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1072.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1185.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1197.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1228.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1229.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1230.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1241.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1242.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1243.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1485.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1486.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1488.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1526.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1544.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1604.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-1624.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-2056.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT204941","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT204942","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://support.citrix.com/article/CTX201114","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959111","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959195","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959325","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959453","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959481","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959517","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959530","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959539","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959636","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959812","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21960191","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21961717","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21962455","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21962739","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21958984","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21959132","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960041","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960194","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960380","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960418","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21962816","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21967893","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3287","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3300","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3316","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3324","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3339","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3688","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.fortiguard.com/advisory/2015-05-20-logjam-attack","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.mozilla.org/security/announce/2015/mfsa2015-70.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"cve@mitre.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/74733","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/91787","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032474","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032475","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032476","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032637","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032645","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032647","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032648","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032649","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032650","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032651","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032652","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032653","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032654","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032655","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032656","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032688","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032699","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032702","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032727","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032759","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032777","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032778","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032783","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032784","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032856","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032864","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032865","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032871","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032884","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032910","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032932","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032960","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033019","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033064","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033065","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033067","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033208","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033209","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033210","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033222","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033341","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033385","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033416","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033430","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033433","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033513","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033760","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033891","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033991","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034087","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034728","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034884","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036218","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040630","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/releaseNotes.htm","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2656-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2656-2","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2673-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2696-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2706-1","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://blog.cloudflare.com/logjam-the-latest-tls-vulnerability-explained/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa98","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1138554","source":"cve@mitre.org","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04718196","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04918839","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04923929","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04740527","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04953655","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128722","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193083","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10122","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://openssl.org/news/secadv/20150611.txt","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://puppet.com/security/cve/CVE-2015-4000","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201506-02","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201512-10","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201603-11","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201701-46","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20150619-0001/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://support.citrix.com/article/CTX216642","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03831en_us","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://weakdh.org/","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://weakdh.org/imperfect-forward-secrecy.pdf","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www-304.ibm.com/support/docview.wss?uid=swg21959745","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098403","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.openssl.org/news/secadv_20150611.txt","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.suse.com/security/cve/CVE-2015-4000.html","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://aix.software.ibm.com/aix/efixes/security/sendmail_advisory2.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://fortiguard.com/advisory/2015-07-09-cve-2015-1793-openssl-alternative-chains-certificate-forgery","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-008.txt.asc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04876402","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04949778","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10681","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10727","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159314.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159351.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160117.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00039.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00040.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00046.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00047.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2015-07/msg00016.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2015-10/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-02/msg00094.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-updates/2016-02/msg00097.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143506486712441&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143557934009303&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143558092609708&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143628304012255&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143637549705650&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143655800220052&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=143880121627664&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144043644216842&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144050121701297&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060576831314&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144060606031437&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144061542602287&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144069189622016&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144102017024820&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144104533800819&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=144493176821532&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://marc.info/?l=bugtraq&m=145409266329539&w=2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://openwall.com/lists/oss-security/2015/05/20/8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1072.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1185.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1197.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1228.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1229.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1230.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1241.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1242.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1243.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1485.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1486.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1488.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1526.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1544.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1604.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-1624.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2016-2056.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT204941","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.apple.com/kb/HT204942","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://support.citrix.com/article/CTX201114","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959111","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959195","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959325","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959453","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959481","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959517","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959530","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959539","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959636","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21959812","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21960191","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21961717","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21962455","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21962739","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21958984","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21959132","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960041","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960194","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960380","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21960418","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21962816","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-304.ibm.com/support/docview.wss?uid=swg21967893","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3287","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3300","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3316","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3324","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2015/dsa-3339","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.debian.org/security/2016/dsa-3688","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.fortiguard.com/advisory/2015-05-20-logjam-attack","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.mozilla.org/security/announce/2015/mfsa2015-70.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/74733","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securityfocus.com/bid/91787","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032474","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032475","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032476","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032637","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032645","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032647","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032648","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032649","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032650","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032651","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032652","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032653","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032654","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032655","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032656","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032688","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032699","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032702","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032727","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032759","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032777","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032778","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032783","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032784","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032856","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032864","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032865","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032871","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032884","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032910","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032932","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1032960","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033019","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033064","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033065","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033067","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033208","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033209","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033210","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033222","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033341","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033385","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033416","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033430","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033433","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033513","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033760","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033891","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1033991","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034087","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034728","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1034884","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1036218","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040630","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/releaseNotes.htm","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2656-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2656-2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2673-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2696-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.ubuntu.com/usn/USN-2706-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://blog.cloudflare.com/logjam-the-latest-tls-vulnerability-explained/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://bto.bluecoat.com/security-advisory/sa98","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1138554","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04718196","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04770140","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04772190","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773119","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773241","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04918839","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04923929","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04926789","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04740527","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04953655","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05045763","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128722","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05193083","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10122","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://openssl.org/news/secadv/20150611.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://puppet.com/security/cve/CVE-2015-4000","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201506-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201512-10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201603-11","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/201701-46","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20150619-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.citrix.com/article/CTX216642","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03831en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://weakdh.org/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://weakdh.org/imperfect-forward-secrecy.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www-304.ibm.com/support/docview.wss?uid=swg21959745","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098403","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.openssl.org/news/secadv_20150611.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.suse.com/security/cve/CVE-2015-4000.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2015-0192","sourceIdentifier":"psirt@us.ibm.com","published":"2015-07-02T21:59:00.063","lastModified":"2026-05-27T17:16:20.737","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to gain privileges via unknown vectors related to the Java Virtual Machine."},{"lang":"es","value":"Vulnerabilidad no especificada en IBM Java 8 anterior a SR1, 7 R1 anterior a SR2 FP11, 7 anterior a SR9, 6 R1 anterior a SR8 FP4, 6 anterior a SR16 FP4, y 5.0 anterior a SR16 FP10 permite a atacantes remotos ganar privilegios a través de vectores desconocidos relacionados con Java Virtual Machine."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0.0.0","versionEndExcluding":"5.0.16.10","matchCriteriaId":"0D291505-B2CB-48F6-B4B9-8343DB71B4A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.0","versionEndIncluding":"6.0.16.4","matchCriteriaId":"FE38ADC0-5602-4620-85F3-76BEACF062BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.0.0","versionEndExcluding":"6.1.8.4","matchCriteriaId":"FE2C442C-B649-4BEE-A228-467597CCA5F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0.0","versionEndIncluding":"7.0.9","matchCriteriaId":"F07FC23E-5B2C-418B-9243-4CCBCEFCFC50"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"7.1.0.0","versionEndExcluding":"7.1.2.11","matchCriteriaId":"C77320D0-9B9F-44AC-9C4F-9A2C77795C95"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0","versionEndExcluding":"8.0.1.0","matchCriteriaId":"A407ADCE-EDA3-46B7-AE72-EF37B1C023A0"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*","matchCriteriaId":"133AAFA7-AF42-4D7B-8822-AA2E85611BF5"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","matchCriteriaId":"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*","matchCriteriaId":"54D669D4-6D7E-449D-80C1-28FA44F06FFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BBCD86A-E6C7-4444-9D74-F861084090F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"16E6D998-B41D-4B49-9E00-8336D2E40A4A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.6:*:*:*:*:*:*:*","matchCriteriaId":"C18E3368-8980-45D2-AD3F-5BF385ABA693"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*","matchCriteriaId":"0E8CD4EF-DC90-40BB-A721-6EC087507906"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*","matchCriteriaId":"44B067C7-735E-43C9-9188-7E1522A02491"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"A8442C20-41F9-47FD-9A12-E724D3A31FD7"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*","matchCriteriaId":"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*","matchCriteriaId":"D0AC5CD5-6E58-433C-9EB3-6DFE5656463E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","matchCriteriaId":"E5ED5807-55B7-47C5-97A6-03233F4FBC3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*","matchCriteriaId":"35BBD83D-BDC7-4678-BE94-639F59281139"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*","matchCriteriaId":"67960FB9-13D1-4DEE-8158-31BF31BCBE6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*","matchCriteriaId":"CB6476C7-03F2-4939-AB85-69AA524516D9"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:*:*:*:*","matchCriteriaId":"F922115C-1907-4F65-9F23-3E63A8BCD4A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*","matchCriteriaId":"DB2A1559-651C-46B0-B436-8E03DC8A60D2"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html","source":"psirt@us.ibm.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html","source":"psirt@us.ibm.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html","source":"psirt@us.ibm.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html","source":"psirt@us.ibm.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html","source":"psirt@us.ibm.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1006.html","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1007.html","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1020.html","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1021.html","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1091.html","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV70682","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV70683","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00013.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00015.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00031.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1006.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1007.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1020.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1021.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2015-1091.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV70682","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV70683","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2015-1916","sourceIdentifier":"psirt@us.ibm.com","published":"2015-07-02T21:59:02.267","lastModified":"2026-05-27T18:16:19.480","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of service via unknown vectors related to SSL/TLS and the Secure Socket Extension provider."},{"lang":"es","value":"Vulnerabilidad no especificada en IBM Java 8 anterior a SR1 permite a atacantes remotos causar una denegación de servicio a través de vectores desconocidos relacionados con el proveedor de extensiones SSL/TLS y the Secure Socket."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:java:8.0:*:*:*:*:*:*:*","matchCriteriaId":"D4DA5845-1740-41C3-8D73-F1E826784497"}]}]}],"references":[{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV72245","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www.securitytracker.com/id/1032779","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV72245","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21883640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securitytracker.com/id/1032779","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2015-5600","sourceIdentifier":"cve@mitre.org","published":"2015-08-03T01:59:03.950","lastModified":"2026-05-27T18:16:20.367","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list."},{"lang":"es","value":"Vulnerabilidad en la función kbdint_next_device en auth2-chall.c en sshd en OpenSSH hasta la versión 6.9, no restringe correctamente el procesamiento de dispositivos de teclado interactivo con una única conexión, lo cual facilita a atacantes remotos ejecutar un ataque de fuerza bruta o causar una denegación de servicio (mediante el consumo de la CPU) a través de una lista larga y redundante en la opción ssh -oKbdInteractiveDevices, según lo demostrado por una modificación en el cliente que provee una contraseña diferente para cada uno de los elementos pam de la lista."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:C","baseScore":8.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":7.8,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"6.9","matchCriteriaId":"27C9A807-7740-4D75-9B01-91ED53D14C40"}]}]}],"references":[{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth2-chall.c","source":"cve@mitre.org"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth2-chall.c.diff?r1=1.42&r2=1.43&f=h","source":"cve@mitre.org"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10697","source":"cve@mitre.org"},{"url":"http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162955.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"cve@mitre.org"},{"url":"http://openwall.com/lists/oss-security/2015/07/23/4","source":"cve@mitre.org"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0466.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2015/Jul/92","source":"cve@mitre.org","tags":["Exploit"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/75990","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/91787","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/92012","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1032988","source":"cve@mitre.org"},{"url":"http://www.ubuntu.com/usn/USN-2710-1","source":"cve@mitre.org"},{"url":"http://www.ubuntu.com/usn/USN-2710-2","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952480","source":"cve@mitre.org"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128992","source":"cve@mitre.org"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667","source":"cve@mitre.org"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10136","source":"cve@mitre.org"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10157","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20151106-0001/","source":"cve@mitre.org"},{"url":"https://support.apple.com/kb/HT205031","source":"cve@mitre.org"},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/1174-security-advisory-12","source":"cve@mitre.org"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth2-chall.c","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/auth2-chall.c.diff?r1=1.42&r2=1.43&f=h","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10697","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162955.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://openwall.com/lists/oss-security/2015/07/23/4","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0466.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2015/Jul/92","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/75990","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/91787","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/92012","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1032988","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/USN-2710-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/USN-2710-2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952480","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128992","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157667","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10136","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10157","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20151106-0001/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/kb/HT205031","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/1174-security-advisory-12","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2015-6563","sourceIdentifier":"cve@mitre.org","published":"2015-08-24T01:59:00.127","lastModified":"2026-05-27T17:16:22.720","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c."},{"lang":"es","value":"Vulnerabilidad en el componente monitor en sshd en OpenSSH en versiones anteriores a 7.0 en plataformas no OpenBSD, acepta datos de nombre de usuario extraños en las solicitudes MONITOR_REQ_PAM_INIT_CTX, lo que permite a usuarios locales llevar a cabo ataques de suplantación aprovechando cualquier acceso de inicio de sesión SSH junto con el control del sshd uid para enviar una petición MONITOR_REQ_PWNAM manipulada, relacionado con monitor.c y monitor_wrap.c."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.5,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:N/I:P/A:N","baseScore":1.9,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.4,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"6.9","matchCriteriaId":"27C9A807-7740-4D75-9B01-91ED53D14C40"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionEndIncluding":"10.11.0","matchCriteriaId":"82D0EE4D-4866-43A3-89B5-6C9BBD839493"}]}]}],"references":[{"url":"http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"cve@mitre.org"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2015/Aug/54","source":"cve@mitre.org"},{"url":"http://www.openssh.com/txt/release-7.0","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2015/08/22/1","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/76317","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openssh/openssh-portable/commit/d4697fe9a28dab7255c60433e4dd23cf7fce8a8b","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"cve@mitre.org"},{"url":"https://security.netapp.com/advisory/ntap-20180201-0002/","source":"cve@mitre.org"},{"url":"https://support.apple.com/HT205375","source":"cve@mitre.org"},{"url":"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-766","source":"cve@mitre.org"},{"url":"http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2015/Aug/54","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openssh.com/txt/release-7.0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2015/08/22/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/76317","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openssh/openssh-portable/commit/d4697fe9a28dab7255c60433e4dd23cf7fce8a8b","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20180201-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://support.apple.com/HT205375","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-766","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2015-6564","sourceIdentifier":"cve@mitre.org","published":"2015-08-24T01:59:01.657","lastModified":"2026-05-27T17:16:23.160","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request."},{"lang":"es","value":"Vulnerabilidad de uso después de la liberación de la memoria en la función mm_answer_pam_free_ctx en monitor.c en sshd en OpenSSH en versiones anteriores a 7.0 en plataformas no OpenBSD, podría permitir a usuarios locales obtener privilegios mediante el aprovechamiento del control del sshd uid para enviar una petición MONITOR_REQ_PAM_FREE_CTX inesperadamente temprana."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:C/I:C/A:C","baseScore":6.9,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*","versionEndIncluding":"6.9","matchCriteriaId":"27C9A807-7740-4D75-9B01-91ED53D14C40"}]}]}],"references":[{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"cve@mitre.org"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"cve@mitre.org"},{"url":"http://seclists.org/fulldisclosure/2015/Aug/54","source":"cve@mitre.org"},{"url":"http://www.openssh.com/txt/release-7.0","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2015/08/22/1","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"cve@mitre.org"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/76317","source":"cve@mitre.org"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"cve@mitre.org"},{"url":"https://github.com/openssh/openssh-portable/commit/5e75f5198769056089fb06c4d738ab0e5abc66f7","source":"cve@mitre.org"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10136","source":"cve@mitre.org"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"cve@mitre.org"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"cve@mitre.org"},{"url":"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-764","source":"cve@mitre.org"},{"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165170.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://rhn.redhat.com/errata/RHSA-2016-0741.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/fulldisclosure/2015/Aug/54","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openssh.com/txt/release-7.0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2015/08/22/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/76317","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://github.com/openssh/openssh-portable/commit/5e75f5198769056089fb06c4d738ab0e5abc66f7","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10136","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/201512-04","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-764","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2022-23305","sourceIdentifier":"security@apache.org","published":"2022-01-18T16:15:08.350","lastModified":"2026-05-27T14:16:36.330","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"By design, the JDBCAppender in Log4j 1.2.x accepts an SQL statement as a configuration parameter where the values to be inserted are converters from PatternLayout. The message converter, %m, is likely to always be included. This allows attackers to manipulate the SQL by entering crafted strings into input fields or headers of an application that are logged allowing unintended SQL queries to be executed. Note this issue only affects Log4j 1.x when specifically configured to use the JDBCAppender, which is not the default. Beginning in version 2.0-beta8, the JDBCAppender was re-introduced with proper support for parameterized SQL queries and further customization over the columns written to in logs. Apache Log4j 1.2 reached end of life in August 2015. Users should upgrade to Log4j 2 as it addresses numerous other issues from the previous versions."},{"lang":"es","value":"Por diseño, el JDBCAppender en Log4j versiones 1.2.x, acepta una sentencia SQL como parámetro de configuración donde los valores a insertar son convertidores de PatternLayout. Es probable que el convertidor de mensajes, %m, sea incluido siempre. Esto permite a atacantes manipular el SQL introduciendo cadenas diseñadas en los campos de entrada o en los encabezados de una aplicación que son registradas permitiendo una ejecución de consultas SQL no deseadas. Tenga en cuenta que este problema sólo afecta a Log4j versiones 1.x cuando es configurado específicamente para usar el JDBCAppender, que no es el predeterminado. A partir de la versión 2.0-beta8, fue reintroducido el JDBCAppender con soporte apropiado para consultas SQL parametrizadas y mayor personalización sobre las columnas escritas en los registros. Apache Log4j versiones 1.2 llegó al final de su vida útil en agosto de 2015. Los usuarios deberían actualizar a Log4j 2, ya que aborda numerosos problemas de las versiones anteriores"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:log4j:*:*:*:*:*:*:*:*","versionStartIncluding":"1.2","versionEndIncluding":"1.2.17","matchCriteriaId":"0C02831A-AD76-43D3-BEB1-DA94FA70A25E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:broadcom:brocade_sannav:-:*:*:*:*:*:*:*","matchCriteriaId":"75B1EDA5-F189-440D-AD0E-C70DD2C0FEE5"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:qos:reload4j:*:*:*:*:*:*:*:*","versionEndExcluding":"1.2.18.2","matchCriteriaId":"FDAF3CC9-3827-4634-85B6-DA94368067EB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:advanced_supply_chain_planning:12.1:*:*:*:*:*:*:*","matchCriteriaId":"A62E2A25-1AD7-4B4B-9D1B-F0DEA4550557"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:advanced_supply_chain_planning:12.2:*:*:*:*:*:*:*","matchCriteriaId":"0331158C-BBE0-42DB-8180-EB1FCD290567"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B602F9E8-1580-436C-A26D-6E6F8121A583"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"77C3DD16-1D81-40E1-B312-50FBD275507C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"81DAC8C0-D342-44B5-9432-6B88D389584F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"E869C417-C0E6-4FC3-B406-45598A1D1906"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"DFEFE2C0-7B98-44F9-B3AD-D6EC607E90DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_eagle_ftp_table_base_retrieval:4.5:*:*:*:*:*:*:*","matchCriteriaId":"C68536CA-C7E2-4228-A6B8-F0DB6A9D29EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.5.0:*:*:*:*:*:*:*","matchCriteriaId":"C4A94B36-479F-48F2-9B9E-ACEA2589EF48"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*","matchCriteriaId":"E1214FDF-357A-4BB9-BADE-50FB2BD16D10"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*","matchCriteriaId":"B21E6EEF-2AB7-4E96-B092-1F49D11B4175"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_offline_mediation_controller:*:*:*:*:*:*:*:*","versionEndExcluding":"12.0.0.4.4","matchCriteriaId":"61A2E42A-4EF2-437D-A0EC-4A6A4F1EBD11"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.5.0:*:*:*:*:*:*:*","matchCriteriaId":"5933FEA2-B79E-4EE7-B821-54D676B45734"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*","matchCriteriaId":"A7637F8B-15F1-42E2-BE18-E1FF7C66587D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*","matchCriteriaId":"E43D793A-7756-4D58-A8ED-72DC4EC9CEA7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:e-business_suite_cloud_manager_and_cloud_backup_module:*:*:*:*:*:*:*:*","versionEndExcluding":"2.2.1.1.1","matchCriteriaId":"86EF205C-9CB1-4772-94D1-0B744EF3342D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:e-business_suite_cloud_manager_and_cloud_backup_module:2.2.1.1.1:*:*:*:*:*:*:*","matchCriteriaId":"6ED0EE39-C080-4E75-AE0F-3859B57EF851"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:e-business_suite_information_discovery:*:*:*:*:*:*:*:*","versionStartIncluding":"12.2.3","versionEndIncluding":"12.2.11","matchCriteriaId":"4D63C2CE-622B-48A8-BD74-09A9B05EDE7C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"6E8758C8-87D3-450A-878B-86CE8C9FC140"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.7.0.0:*:*:*:*:*:*:*","matchCriteriaId":"054B56E0-F11B-4939-B7E1-E722C67A041A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.7.0.1:*:*:*:*:*:*:*","matchCriteriaId":"250A493C-E052-4978-ABBE-786DC8038448"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:financial_services_revenue_management_and_billing_analytics:2.8.0.0:*:*:*:*:*:*:*","matchCriteriaId":"2E2B771B-230A-4811-94D7-065C2722E428"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:healthcare_foundation:8.1.0:*:*:*:*:*:*:*","matchCriteriaId":"E67501BE-206A-49FD-8CBA-22935DF917F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hyperion_data_relationship_management:*:*:*:*:*:*:*:*","versionEndExcluding":"11.2.8.0","matchCriteriaId":"E8E7FBA9-0FFF-4C86-B151-28C17A142E0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:hyperion_infrastructure_technology:*:*:*:*:*:*:*:*","versionEndExcluding":"11.2.8.0","matchCriteriaId":"55BBCD48-BCC6-4E19-A4CE-970E524B9FF4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:identity_management_suite:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"1489DDA7-EDBE-404C-B48D-F0B52B741708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:identity_management_suite:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"535BC19C-21A1-48E3-8CC0-B276BA5D494E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:identity_manager_connector:11.1.1.5.0:*:*:*:*:*:*:*","matchCriteriaId":"9D7EA92D-9F26-4292-991A-891597337DFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"228DA523-4D6D-48C5-BDB0-DB1A60F23F8B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"9AB179A8-DFB7-4DCF-8DE3-096F376989F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*","versionEndIncluding":"8.0.29","matchCriteriaId":"B0EBAC6D-D0CE-42A1-AEA0-2D50C8035747"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:retail_extract_transform_and_load:13.2.5:*:*:*:*:*:*:*","matchCriteriaId":"30501D23-5044-477A-8DC3-7610126AEFD7"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:tuxedo:12.2.2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"EB7D0A30-3986-49AB-B7F3-DAE0024504BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"F14A818F-AA16-4438-A3E4-E64C9287AC66"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*","matchCriteriaId":"4A5BB153-68E0-4DDA-87D1-0D9AB7F0A418"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"04BCDC24-4A21-473C-8733-0D9CFB38A752"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2022/01/18/4","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.apache.org/thread/pt6lh3pbsvxqlwlp4c5l798dv2hkc85y","source":"security@apache.org","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://logging.apache.org/log4j/1.2/index.html","source":"security@apache.org","tags":["Vendor Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220217-0007/","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/01/18/4","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.apache.org/thread/pt6lh3pbsvxqlwlp4c5l798dv2hkc85y","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://logging.apache.org/log4j/1.2/index.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220217-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-21277","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:11.697","lastModified":"2026-05-27T15:16:18.393","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: ImageIO). Las versiones compatibles que están afectadas son Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad explotable fácilmente, permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21282","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:11.930","lastModified":"2026-05-27T15:16:19.760","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: JAXP). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en un acceso de lectura no autorizado a un subconjunto de datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-611"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21283","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:11.977","lastModified":"2026-05-27T17:16:24.027","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones compatibles que están afectadas son Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad explotable fácilmente, permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-693"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21291","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:12.350","lastModified":"2026-05-27T15:16:19.980","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Hotspot). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start o applets Java con sandbox, que cargan y ejecutan código no fiable (por ejemplo, código procedente de Internet) y que dependen de la sandbox de Java para su seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21293","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:12.447","lastModified":"2026-05-27T17:16:24.250","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DIN3L6L3SVZK75CKW2GPSU4HIGZR7XG/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21294","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:12.493","lastModified":"2026-05-27T17:16:25.100","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial del servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21296","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:12.587","lastModified":"2026-05-27T15:16:20.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: JAXP). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en un acceso de lectura no autorizado a un subconjunto de datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21299","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:12.727","lastModified":"2026-05-27T17:16:25.307","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: JAXP). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"secalert_us@oracle.com"},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21305","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:13.013","lastModified":"2026-05-27T15:16:20.443","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Hotspot). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21340","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:14.650","lastModified":"2026-05-27T17:16:25.533","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21341","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:14.697","lastModified":"2026-05-27T15:16:20.660","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Serialization). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-502"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21360","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:15.540","lastModified":"2026-05-27T15:16:20.883","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: ImageIO). Las versiones compatibles que están afectadas son Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial del servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"F3E9DB6B-06BC-47F9-AEB9-E36378A97543"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"3C9591ED-CA9E-4844-9B7F-D477D7A51413"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update321:*:*:*:*:*:*","matchCriteriaId":"C5988521-7571-4AE7-BD02-2C8765FC464B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update311:*:*:*:*:*:*","matchCriteriaId":"29AB737A-FB85-4E91-B8D3-A4B9A780FC0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/02/msg00011.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21366","sourceIdentifier":"secalert_us@oracle.com","published":"2022-01-19T12:15:15.817","lastModified":"2026-05-27T15:16:21.103","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: ImageIO). Las versiones compatibles que están afectadas son Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise Edition: 20.3.4 y 21.3.0. Una vulnerabilidad explotable fácilmente, permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una capacidad no autorizada de causar una negación parcial del servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada al usar APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación base 5.3 (impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.4:*:*:*:enterprise:*:*:*","matchCriteriaId":"9F300E13-1B40-4B35-ACA5-4D402CD41055"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B10E38A6-783C-45A2-98A1-12FA1EB3D3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"A7F43D86-B696-41E4-A288-6A2D43A1774A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"3575C88F-05D3-49F6-A60B-7ED902E318F1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.13:*:*:*:*:*:*:*","matchCriteriaId":"90EC4B85-A88A-4EC3-9EA0-3A24874D5F87"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"962026D1-1E50-480F-921C-C7EE32AA0107"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*","matchCriteriaId":"26A2B713-7D6D-420A-93A4-E0D983C983DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*","matchCriteriaId":"64DE38C8-94F1-4860-B045-F33928F676A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.13","matchCriteriaId":"6489B616-476E-46AB-8795-7EFDD9074899"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.9","matchCriteriaId":"F8A2B4B3-64EC-4930-9F31-202E4D19AF98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.5","matchCriteriaId":"CF9DCD68-A054-456D-8A3C-15939F85DF90"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17:*:*:*:*:*:*:*","matchCriteriaId":"4D0A929D-6054-4EFB-8BAD-58826D22D34B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:17.0.1:*:*:*:*:*:*:*","matchCriteriaId":"DE7858DA-58DE-4920-B678-7800BD084EA1"}]}]}],"references":[{"url":"https://security.gentoo.org/glsa/202209-05","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"secalert_us@oracle.com","tags":["Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/202209-05","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220121-0007/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5057","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5058","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujan2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-24464","sourceIdentifier":"secure@microsoft.com","published":"2022-03-09T17:15:14.277","lastModified":"2026-05-27T15:16:22.960","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":".NET and Visual Studio Denial of Service Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Denegación de Servicio en .NET y Visual Studio"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0","versionEndIncluding":"5.0.14","matchCriteriaId":"D986C83E-F055-4861-B3FC-D1AE2662A826"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0","versionEndIncluding":"6.0.2","matchCriteriaId":"9C933FD8-CBE5-43C7-873A-CC2C47E2BF3A"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*","versionStartIncluding":"3.1","versionEndIncluding":"3.1.22","matchCriteriaId":"EB57B616-F5BD-47B7-BBD0-AF58976CEE10"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.0","versionEndIncluding":"16.6.4","matchCriteriaId":"A6222A0C-EC9B-4AB2-A89F-5D62B381A212"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.7.0","versionEndExcluding":"16.7.26","matchCriteriaId":"367AC9B2-D639-40F6-93FB-822F73E65C30"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.8.0","versionEndIncluding":"16.8.7","matchCriteriaId":"AC9599DF-664B-4630-9FCD-7FCD846728A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.9.0","versionEndExcluding":"16.9.18","matchCriteriaId":"4338A4F9-0FE2-40F4-B184-86B9F5EF1EED"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.10.0","versionEndIncluding":"16.10.4","matchCriteriaId":"7B6E2777-4D9B-4710-9575-250B04E1AE0C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.11.0","versionEndExcluding":"16.11.11","matchCriteriaId":"F1265006-B9CB-4E89-B6E8-F9EC1D6C7405"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*","versionStartIncluding":"17.0","versionEndExcluding":"17.0.7","matchCriteriaId":"6C72810F-D156-49CE-A325-7E6A63C9E4A3"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-24512","sourceIdentifier":"secure@microsoft.com","published":"2022-03-09T17:15:15.737","lastModified":"2026-05-27T14:16:36.990","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":".NET and Visual Studio Remote Code Execution Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Ejecución de Código Remota en .NET y Visual Studio"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4},{"source":"nvd@nist.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:5.0:*:*:*:*:*:*:*","matchCriteriaId":"C8F02D5C-61F1-4381-8D64-8BEB5CED0DC6"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*","matchCriteriaId":"1DE0C8DD-9C73-4876-8193-068F18074B58"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*","matchCriteriaId":"70BE107E-20A0-4998-A8ED-BCC414C6BDBF"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0","versionEndExcluding":"7.0.9","matchCriteriaId":"77F72A4A-239D-4362-B42C-2B125FD977AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*","versionStartIncluding":"7.1","versionEndExcluding":"7.1.6","matchCriteriaId":"A2C644EF-33B6-440F-8051-6A0D3C096F67"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*","versionStartIncluding":"7.2","versionEndExcluding":"7.2.2","matchCriteriaId":"CD5CE10E-FCBF-4FBA-9B4E-BEB7F7E902A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.0","versionEndIncluding":"16.6.4","matchCriteriaId":"A6222A0C-EC9B-4AB2-A89F-5D62B381A212"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.7.0","versionEndExcluding":"16.7.26","matchCriteriaId":"367AC9B2-D639-40F6-93FB-822F73E65C30"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.8.0","versionEndIncluding":"16.8.7","matchCriteriaId":"AC9599DF-664B-4630-9FCD-7FCD846728A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.9.0","versionEndExcluding":"16.9.18","matchCriteriaId":"4338A4F9-0FE2-40F4-B184-86B9F5EF1EED"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.10.0","versionEndIncluding":"16.10.4","matchCriteriaId":"7B6E2777-4D9B-4710-9575-250B04E1AE0C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.11.0","versionEndExcluding":"16.11.11","matchCriteriaId":"F1265006-B9CB-4E89-B6E8-F9EC1D6C7405"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*","versionStartIncluding":"17.0","versionEndExcluding":"17.0.7","matchCriteriaId":"6C72810F-D156-49CE-A325-7E6A63C9E4A3"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21476","sourceIdentifier":"secalert_us@oracle.com","published":"2022-04-19T21:15:17.503","lastModified":"2026-05-27T15:16:21.307","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones afectadas son Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 y 22.0.0.2. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en un acceso no autorizado a datos críticos o el acceso completo a todos los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen del sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación Base 7.5 (impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.5:*:*:*:enterprise:*:*:*","matchCriteriaId":"079F2588-2746-408B-9BB0-9A569289985B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.1:*:*:*:enterprise:*:*:*","matchCriteriaId":"51600424-E294-41E0-9C8B-12D0C3456027"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.0.0.2:*:*:*:enterprise:*:*:*","matchCriteriaId":"C3D12B98-032F-49A6-B237-E0CAD32D9A25"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:7.0:update_331:*:*:*:*:*:*","matchCriteriaId":"AC99AA10-93C5-4B27-A991-FD29496FDF1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:8.0:update_321:*:*:*:*:*:*","matchCriteriaId":"C66D72B5-055F-45BD-AD02-C5E086AB5B63"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.14:*:*:*:*:*:*:*","matchCriteriaId":"681BFE5C-6F33-4084-8F0D-2DD573782004"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.2:*:*:*:*:*:*:*","matchCriteriaId":"A29CF53D-7DDC-4B60-8232-6C173083101F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:18:*:*:*:*:*:*:*","matchCriteriaId":"FBA091EC-B5A9-468D-B99C-BB6F333E7B64"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0.0","versionEndIncluding":"11.70.1","matchCriteriaId":"FF971916-C526-43A9-BD80-985BCC476569"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*","matchCriteriaId":"1AEFF829-A8F2-4041-8DDF-E705DB3ADED2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*","matchCriteriaId":"85DF4B3F-4BBC-42B7-B729-096934523D63"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"A372B177-F740-4655-865C-31777A6E140B"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:bootstrap_os:-:*:*:*:*:*:*:*","matchCriteriaId":"95BA156C-C977-4F0C-8DFB-3FAE9CC8C02D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.52:*:*:*:*:*:*:*","matchCriteriaId":"5522AD81-A23E-47D3-82E4-6D71ECEB1DBD"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.60:*:*:*:*:*:*:*","matchCriteriaId":"6AC61C25-871B-4F6F-A5F0-77359F373681"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.54:*:*:*:*:*:*:*","matchCriteriaId":"12A59E25-5ED3-4A6D-95F6-45750866E0D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.46:*:*:*:*:*:*:*","matchCriteriaId":"FC0DC492-706E-42FE-8757-71873B53C417"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.38:*:*:*:*:*:*:*","matchCriteriaId":"C1441FE9-45C5-46C4-BF78-FD5D30F9C80C"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.32:*:*:*:*:*:*:*","matchCriteriaId":"28D25E37-5479-4876-B46C-28FF87384852"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.14","matchCriteriaId":"9C0D3169-24B4-4733-BD40-59D0BB5DAC13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.10","matchCriteriaId":"D1D003C0-042E-4126-AEDA-F85863FEAB45"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.6","matchCriteriaId":"EC2C87EC-6234-482F-B597-962E3C52D01B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"17","versionEndIncluding":"17.0.2","matchCriteriaId":"38F4BE82-B2A6-4E48-B1E0-100ACF94B9CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update331:*:*:*:*:*:*","matchCriteriaId":"A8971E08-2CA2-46F4-8C26-12D2AFAC3B04"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update322:*:*:*:*:*:*","matchCriteriaId":"DAB4F663-BCAF-43DB-BCC3-24C060B0CBAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:*","matchCriteriaId":"56CBFC1F-C120-44F2-877A-C1C880AA89C4"}]}]}],"references":[{"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220429-0006/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5128","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5131","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220429-0006/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5128","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5131","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuapr2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-26926","sourceIdentifier":"secure@microsoft.com","published":"2022-05-10T21:15:10.243","lastModified":"2026-05-27T14:16:37.410","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Windows Address Book Remote Code Execution Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Ejecución de Código Remota en Windows Address Book"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:x64:*","matchCriteriaId":"084984D5-D241-497B-B118-50C6C1EAD468"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:x86:*","matchCriteriaId":"BA592626-F17C-4F46-823B-0947D102BBD2"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:arm64:*","matchCriteriaId":"610B33F9-0309-4CF7-B7E4-5152D9B2FFE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:x64:*","matchCriteriaId":"21074553-EDF2-468D-8E79-C39851B5BC79"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:x86:*","matchCriteriaId":"4E62F9CB-D1B6-4B4D-BCCD-7F4D36A73B4D"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:arm64:*","matchCriteriaId":"49A4BBDA-0389-4171-AA49-6837F7DF4454"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:x64:*","matchCriteriaId":"F8C238FA-B20F-40A5-B861-A8295858F4BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:x86:*","matchCriteriaId":"56513BCA-A9F5-4112-BDE6-77E9B8D2677E"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:arm64:*","matchCriteriaId":"665EA912-D724-41EB-86A9-24EB4FE87B54"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:x64:*","matchCriteriaId":"77E07B96-EAAA-4DD6-9172-0DE98A36726F"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:x86:*","matchCriteriaId":"B846A736-E77C-4665-B28B-4E511880D575"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:x64:*","matchCriteriaId":"897A48D7-FCA1-4560-AFBB-718AF19BA3A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:x86:*","matchCriteriaId":"507EB48C-F479-424C-8ABA-C279AB4FE3F4"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:arm64:*","matchCriteriaId":"925B8C67-C96F-4A4D-9BE7-CCCD78EF3C31"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:x64:*","matchCriteriaId":"6CF580BA-6938-40F6-9D86-F43044A6BACA"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:x86:*","matchCriteriaId":"C5E038AA-514F-48AC-B45E-859EE32525B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:arm64:*","matchCriteriaId":"31622391-A67E-4E2A-A855-1316B6E38630"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:x64:*","matchCriteriaId":"61F0792D-7587-4297-8EE7-D4DC3A30EE84"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:x86:*","matchCriteriaId":"7649042B-4430-4BD9-B82F-984A2831A651"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*","matchCriteriaId":"B9F64296-66BF-4F1D-A11C-0C44C347E2AC"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*","matchCriteriaId":"5D7F7DDB-440E-42CD-82F4-B2C13F3CC462"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x64:*","matchCriteriaId":"7FE8B00B-4F39-4755-A323-8AD71F5E3EBE"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x86:*","matchCriteriaId":"06BBFA69-94E2-4BAB-AFD3-BC434B11D106"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:x64:*","matchCriteriaId":"C936FD4F-959C-43B8-9917-E2A0DF4A8793"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:x86:*","matchCriteriaId":"DF8ABB14-84CF-4BBC-99C9-DA6C0F7A0619"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*","matchCriteriaId":"C6CE5198-C498-4672-AF4C-77AB4BE06C5C"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server:2022:*:*:*:*:*:*:*","matchCriteriaId":"BE257836-4F4D-4352-8293-B9CAD34F8794"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*","matchCriteriaId":"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x86:*","matchCriteriaId":"EDCDBC70-9AB7-47F3-BD61-28860EEE5065"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:sp2:*:*:*:*:*:x64:*","matchCriteriaId":"C0DC57FA-88F8-4D5C-94BD-3A8B1FB8C047"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:sp2:*:*:*:*:*:x86:*","matchCriteriaId":"B4809FDE-A816-42FD-807F-4F9C7B6DB22E"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*","matchCriteriaId":"A7DF96F8-BA6A-4780-9CA3-F719B3F81074"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*","matchCriteriaId":"DB18C4CE-5917-401E-ACF7-2747084FD36E"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*","matchCriteriaId":"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*","matchCriteriaId":"DB79EE26-FC32-417D-A49C-A1A63165A968"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26926","source":"secure@microsoft.com"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-26926","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-29117","sourceIdentifier":"secure@microsoft.com","published":"2022-05-10T21:15:11.877","lastModified":"2026-05-27T14:16:38.803","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":".NET and Visual Studio Denial of Service Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Denegación de Servicio en .NET y Visual Studio. Este ID de CVE es diferente de CVE-2022-23267, CVE-2022-29145"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:5.0:*:*:*:*:*:*:*","matchCriteriaId":"C8F02D5C-61F1-4381-8D64-8BEB5CED0DC6"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*","matchCriteriaId":"1DE0C8DD-9C73-4876-8193-068F18074B58"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*","matchCriteriaId":"70BE107E-20A0-4998-A8ED-BCC414C6BDBF"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.0","versionEndIncluding":"16.0.11","matchCriteriaId":"6EDDFE7B-C13D-4EF8-B288-0919CF7394F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*","matchCriteriaId":"3393F97F-05CD-4B04-A6E1-3D914652C4E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*","matchCriteriaId":"950638D8-6997-4058-8A9E-6153A7FC3B32"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29117","source":"secure@microsoft.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNXQL7EZORGU4PZCPJ5EPQ4P7IEY3ZZO/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IBYSBUDJYQ76HK4TULXVIIPCKK2U6WDB/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W5FPEQ6BTYRGTS6IYCDTZW6YF5HLQ3BY/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29117","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-29145","sourceIdentifier":"secure@microsoft.com","published":"2022-05-10T21:15:13.077","lastModified":"2026-05-27T14:16:38.967","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":".NET and Visual Studio Denial of Service Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Denegación de Servicio en .NET y Visual Studio. Este ID de CVE es diferente de CVE-2022-23267, CVE-2022-29117"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:5.0:*:*:*:*:*:*:*","matchCriteriaId":"C8F02D5C-61F1-4381-8D64-8BEB5CED0DC6"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:6.0.0:*:*:*:*:*:*:*","matchCriteriaId":"F6CE8612-0E01-406F-B5E7-8C7F5451E2FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*","matchCriteriaId":"70BE107E-20A0-4998-A8ED-BCC414C6BDBF"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.0","versionEndExcluding":"16.9.21","matchCriteriaId":"4B45D4D8-318F-444E-A07A-274C1DD9CF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*","versionStartIncluding":"16.10","versionEndExcluding":"16.11.14","matchCriteriaId":"2508F0E2-89CA-44CD-B4BA-A5D49C46BA11"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*","versionStartIncluding":"17.0","versionEndExcluding":"17.1.7","matchCriteriaId":"C44DF295-0388-4FEE-A4A8-BAB75834C280"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","matchCriteriaId":"A930E247-0B43-43CB-98FF-6CE7B8189835"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29145","source":"secure@microsoft.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNXQL7EZORGU4PZCPJ5EPQ4P7IEY3ZZO/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IBYSBUDJYQ76HK4TULXVIIPCKK2U6WDB/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W5FPEQ6BTYRGTS6IYCDTZW6YF5HLQ3BY/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29145","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-22576","sourceIdentifier":"support@hackerone.com","published":"2022-05-26T17:15:09.077","lastModified":"2026-05-27T14:16:35.027","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL-enabled protocols: SMPTP(S), IMAP(S), POP3(S) and LDAP(S) (openldap only)."},{"lang":"es","value":"Se presenta una vulnerabilidad de autenticación inapropiada en curl versiones 7.33.0 hasta 7.82.0 incluyéndola, que podría permitir reúso de conexiones autenticadas por OAUTH2 sin asegurarse apropiadamente de que la conexión fue autenticada con las mismas credenciales establecidas para esta transferencia. Esto afecta a los protocolos con SASL: SMPTP(S), IMAP(S), POP3(S) y LDAP(S) (sólo openldap)"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:N","baseScore":5.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-306"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*","versionStartIncluding":"7.33.0","versionEndExcluding":"7.83.0","matchCriteriaId":"74CAAB48-E0AD-4BD2-B143-A02937679092"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*","matchCriteriaId":"1FE996B1-6951-4F85-AA58-B99A379D2163"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D6D700C5-F67F-4FFB-BE69-D524592A3D2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_storage_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D452B464-1200-4B72-9A89-42DC58486191"},{"vulnerable":true,"criteria":"cpe:2.3:o:brocade:fabric_operating_system:-:*:*:*:*:*:*:*","matchCriteriaId":"41CD1160-B681-41EF-9EB4-06CE0F53C501"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:bootstrap_os:-:*:*:*:*:*:*:*","matchCriteriaId":"95BA156C-C977-4F0C-8DFB-3FAE9CC8C02D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6770B6C3-732E-4E22-BF1C-2D2FD610061C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*","matchCriteriaId":"9F9C8C20-42EB-4AB5-BD97-212DEB070C43"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7FFF7106-ED78-49BA-9EC5-B889E3685D53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*","matchCriteriaId":"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"56409CEC-5A1E-4450-AA42-641E459CC2AF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*","matchCriteriaId":"B06F4839-D16A-4A61-9BB5-55B13F41E47F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D0B4AD8A-F172-4558-AEC6-FF424BA2D912"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*","matchCriteriaId":"8497A4C9-8474-4A62-8331-3FE862ED4098"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndExcluding":"8.2.12","matchCriteriaId":"5722E753-75DE-4944-A11B-556CB299B57D"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.0.6","matchCriteriaId":"DC0F9351-81A4-4FEA-B6B5-6E960A933D32"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EED24E67-2957-4C1B-8FEA-E2D2FE7B97FC"}]}]}],"references":[{"url":"https://hackerone.com/reports/1526328","source":"support@hackerone.com","tags":["Exploit","Issue Tracking","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1526328","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1526328","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Issue Tracking","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-27774","sourceIdentifier":"support@hackerone.com","published":"2022-06-02T14:15:43.317","lastModified":"2026-05-27T14:16:37.647","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers."},{"lang":"es","value":"Una vulnerabilidad de credenciales insuficientemente protegidas se presenta en curl versión 4.9 a e incluyen curl versión 7.82.0 están afectados que podría permitir a un atacante para extraer credenciales cuando sigue redireccionamientos HTTP(S) es usado con la autenticación podría filtrar credenciales a otros servicios que se presentan en diferentes protocolos o números de puerto"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:P/I:N/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-522"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*","versionStartIncluding":"4.9","versionEndIncluding":"7.82.0","matchCriteriaId":"5C214153-4B3E-4F09-9B58-413136131841"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*","matchCriteriaId":"1C767AA1-88B7-48F0-9F31-A89D16DCD52C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*","matchCriteriaId":"1FE996B1-6951-4F85-AA58-B99A379D2163"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D6D700C5-F67F-4FFB-BE69-D524592A3D2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_storage_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D452B464-1200-4B72-9A89-42DC58486191"},{"vulnerable":true,"criteria":"cpe:2.3:o:brocade:fabric_operating_system:-:*:*:*:*:*:*:*","matchCriteriaId":"41CD1160-B681-41EF-9EB4-06CE0F53C501"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6770B6C3-732E-4E22-BF1C-2D2FD610061C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*","matchCriteriaId":"9F9C8C20-42EB-4AB5-BD97-212DEB070C43"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7FFF7106-ED78-49BA-9EC5-B889E3685D53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*","matchCriteriaId":"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"56409CEC-5A1E-4450-AA42-641E459CC2AF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*","matchCriteriaId":"B06F4839-D16A-4A61-9BB5-55B13F41E47F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D0B4AD8A-F172-4558-AEC6-FF424BA2D912"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*","matchCriteriaId":"8497A4C9-8474-4A62-8331-3FE862ED4098"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndExcluding":"8.2.12","matchCriteriaId":"5722E753-75DE-4944-A11B-556CB299B57D"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.0.6","matchCriteriaId":"DC0F9351-81A4-4FEA-B6B5-6E960A933D32"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EED24E67-2957-4C1B-8FEA-E2D2FE7B97FC"}]}]}],"references":[{"url":"https://hackerone.com/reports/1543773","source":"support@hackerone.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1543773","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1543773","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-27775","sourceIdentifier":"support@hackerone.com","published":"2022-06-02T14:15:43.510","lastModified":"2026-05-27T14:16:37.840","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead."},{"lang":"es","value":"Se presenta una vulnerabilidad de divulgación de información en curl versiones 7.65.0 a 7.82.0, son vulnerables que al usar una dirección IPv6 que estaba en el pool de conexiones pero con un id de zona diferente podría reusar una conexión en su lugar"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*","versionStartIncluding":"7.65.0","versionEndIncluding":"7.82.0","matchCriteriaId":"8D455004-7BE1-4033-926B-E5DBF39925FE"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*","matchCriteriaId":"1C767AA1-88B7-48F0-9F31-A89D16DCD52C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*","matchCriteriaId":"1FE996B1-6951-4F85-AA58-B99A379D2163"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D6D700C5-F67F-4FFB-BE69-D524592A3D2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_storage_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D452B464-1200-4B72-9A89-42DC58486191"},{"vulnerable":true,"criteria":"cpe:2.3:o:brocade:fabric_operating_system:-:*:*:*:*:*:*:*","matchCriteriaId":"41CD1160-B681-41EF-9EB4-06CE0F53C501"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6770B6C3-732E-4E22-BF1C-2D2FD610061C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*","matchCriteriaId":"9F9C8C20-42EB-4AB5-BD97-212DEB070C43"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7FFF7106-ED78-49BA-9EC5-B889E3685D53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*","matchCriteriaId":"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"56409CEC-5A1E-4450-AA42-641E459CC2AF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*","matchCriteriaId":"B06F4839-D16A-4A61-9BB5-55B13F41E47F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D0B4AD8A-F172-4558-AEC6-FF424BA2D912"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*","matchCriteriaId":"8497A4C9-8474-4A62-8331-3FE862ED4098"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndExcluding":"8.2.12","matchCriteriaId":"5722E753-75DE-4944-A11B-556CB299B57D"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.0.6","matchCriteriaId":"DC0F9351-81A4-4FEA-B6B5-6E960A933D32"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EED24E67-2957-4C1B-8FEA-E2D2FE7B97FC"}]}]}],"references":[{"url":"https://hackerone.com/reports/1546268","source":"support@hackerone.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1546268","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0008/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://hackerone.com/reports/1546268","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-27781","sourceIdentifier":"support@hackerone.com","published":"2022-06-02T14:15:44.467","lastModified":"2026-05-27T14:16:38.027","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returned about a server's certificate chain.Due to an erroneous function, a malicious server could make libcurl built withNSS get stuck in a never-ending busy-loop when trying to retrieve thatinformation."},{"lang":"es","value":"libcurl proporciona la opción \"CURLOPT_CERTINFO\" para permitir que las aplicaciones soliciten que se devuelvan detalles sobre la cadena de certificados de un servidor. Debido a una función errónea, un servidor malicioso podría hacer que libcurl construido conNSS quedara atascado en un bucle ocupado interminable cuando intentara recuperar esa información"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-835"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*","versionEndExcluding":"7.83.1","matchCriteriaId":"5A6699F9-0644-4957-ABE3-6394FC77FB37"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*","matchCriteriaId":"1C767AA1-88B7-48F0-9F31-A89D16DCD52C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*","matchCriteriaId":"1FE996B1-6951-4F85-AA58-B99A379D2163"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire\\,_enterprise_sds_\\&_hci_storage_node:-:*:*:*:*:*:*:*","matchCriteriaId":"DAA3919C-B2B1-4CB5-BA76-7A079AAFFC52"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire_\\&_hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"D6D700C5-F67F-4FFB-BE69-D524592A3D2E"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"6770B6C3-732E-4E22-BF1C-2D2FD610061C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*","matchCriteriaId":"9F9C8C20-42EB-4AB5-BD97-212DEB070C43"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"7FFF7106-ED78-49BA-9EC5-B889E3685D53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*","matchCriteriaId":"E63D8B0F-006E-4801-BF9D-1C001BBFB4F9"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"56409CEC-5A1E-4450-AA42-641E459CC2AF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*","matchCriteriaId":"B06F4839-D16A-4A61-9BB5-55B13F41E47F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D0B4AD8A-F172-4558-AEC6-FF424BA2D912"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*","matchCriteriaId":"8497A4C9-8474-4A62-8331-3FE862ED4098"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndExcluding":"8.2.12","matchCriteriaId":"5722E753-75DE-4944-A11B-556CB299B57D"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.0.6","matchCriteriaId":"DC0F9351-81A4-4FEA-B6B5-6E960A933D32"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EED24E67-2957-4C1B-8FEA-E2D2FE7B97FC"}]}]}],"references":[{"url":"https://hackerone.com/reports/1555441","source":"support@hackerone.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0009/","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://hackerone.com/reports/1555441","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0009/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://hackerone.com/reports/1555441","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-27782","sourceIdentifier":"support@hackerone.com","published":"2022-06-02T14:15:44.663","lastModified":"2026-05-27T14:16:38.210","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse if one of them matches the setup. However, several TLS andSSH settings were left out from the configuration match checks, making themmatch too easily."},{"lang":"es","value":"libcurl reusaba una conexión creada previamente incluso cuando había sido cambiada una opción relacionada con TLS o SSH que debería haber prohibido el reúso. libcurl mantiene las conexiones usadas previamente en un pool de conexiones para que las transferencias posteriores las reúsen si una de ellas coincide con la configuración. Sin embargo, varias opciones relacionadas con TLS y SSH se dejaron fuera de las comprobaciones de coincidencia de la configuración, lo que hizo que coincidieran con demasiada facilidad"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-840"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-295"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*","versionEndExcluding":"7.83.1","matchCriteriaId":"5A6699F9-0644-4957-ABE3-6394FC77FB37"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"8.2.0","versionEndExcluding":"8.2.12","matchCriteriaId":"5722E753-75DE-4944-A11B-556CB299B57D"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndExcluding":"9.0.6","matchCriteriaId":"DC0F9351-81A4-4FEA-B6B5-6E960A933D32"},{"vulnerable":true,"criteria":"cpe:2.3:a:splunk:universal_forwarder:9.1.0:*:*:*:*:*:*:*","matchCriteriaId":"EED24E67-2957-4C1B-8FEA-E2D2FE7B97FC"}]}]}],"references":[{"url":"http://www.openwall.com/lists/oss-security/2023/03/20/6","source":"support@hackerone.com","tags":["Mailing List"]},{"url":"https://hackerone.com/reports/1555796","source":"support@hackerone.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0009/","source":"support@hackerone.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"support@hackerone.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2023/03/20/6","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List"]},{"url":"https://hackerone.com/reports/1555796","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202212-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20220609-0009/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5197","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://hackerone.com/reports/1555796","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-34169","sourceIdentifier":"security@apache.org","published":"2022-07-19T18:15:11.740","lastModified":"2026-05-27T14:16:39.110","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan."},{"lang":"es","value":"La biblioteca Apache Xalan Java XSLT es vulnerable a un problema de truncamiento de enteros cuando procesa hojas de estilo XSLT maliciosas. Esto puede usarse para corromper los archivos de clase Java generados por el compilador interno XSLTC y ejecutar código de bytes Java arbitrario. El proyecto Apache Xalan Java está inactivo y en proceso de ser retirado. No son esperadas futuras versiones de Apache Xalan Java que abordan este problema. Nota: Los tiempos de ejecución de Java (como OpenJDK) incluyen copias reempaquetadas de Xalan."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-681"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-681"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:xalan-java:*:*:*:*:*:*:*:*","versionEndIncluding":"2.7.2","matchCriteriaId":"E406791B-F9FD-4E3F-831C-296D8F8FF9BE"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.6:*:*:*:enterprise:*:*:*","matchCriteriaId":"7D961E24-EA18-4217-B5F5-F847726D84E3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.2:*:*:*:enterprise:*:*:*","matchCriteriaId":"601D92C4-F71F-47E2-9041-5C286D2137F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.1.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B18FE85D-C53D-44E9-8992-715820D1264B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update343:*:*:*:*:*:*","matchCriteriaId":"6E3C0BA3-FCD3-4CB8-B8C7-F931090A7DBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update333:*:*:*:*:*:*","matchCriteriaId":"EB2A5440-7FA7-4A86-AA19-E2ABBD809B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.15.1:*:*:*:*:*:*:*","matchCriteriaId":"9C0485FC-E4B2-464E-8228-1387AC5F353B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"7AF3539B-0434-4310-AE88-F46864C7C20F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:18.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"F5CC9398-71B6-4480-95ED-EDCE838D157E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update343:*:*:*:*:*:*","matchCriteriaId":"60614E43-090E-44D7-94AD-FFAE38FF111F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update333:*:*:*:*:*:*","matchCriteriaId":"131E1C9E-721C-4176-B78B-69C01F90A9A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.15.1:*:*:*:*:*:*:*","matchCriteriaId":"AD4BFA12-588A-4D8D-B45F-648A55EC674C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"0DF70EEA-EC9D-4FFC-B7BE-76F50C34D999"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:18.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"4EF9CFB1-CEC9-483E-BECF-618190C03944"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.15","matchCriteriaId":"DD2ADA66-DCD0-4D28-80B2-77A0265CE7B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.11","matchCriteriaId":"8CA6BC07-2BDA-4913-AF2B-FD2146B0E539"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.7","matchCriteriaId":"5A2E366B-549D-48C5-B3FB-AD0E8C75AE08"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"17","versionEndIncluding":"17.0.3","matchCriteriaId":"15FD6A0B-BB1A-4875-926C-AB1B6EC1A053"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update322:*:*:*:*:*:*","matchCriteriaId":"DAB4F663-BCAF-43DB-BCC3-24C060B0CBAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update332:*:*:*:*:*:*","matchCriteriaId":"A8EF5BB8-7DAF-49B0-A11E-14E89EF7377A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:*","matchCriteriaId":"56CBFC1F-C120-44F2-877A-C1C880AA89C4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:6.47:*:*:*:*:*:*:*","matchCriteriaId":"4E4633C4-E552-439D-8FE4-139E3A7956CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.54:*:*:*:*:*:*:*","matchCriteriaId":"50C77346-8893-44F0-B0D1-5D4D30A9CA3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.62:*:*:*:*:*:*:*","matchCriteriaId":"63E58DE0-A96A-452E-986F-3BD2FEA7C723"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.56:*:*:*:*:*:*:*","matchCriteriaId":"D3FB1BF4-3FCF-4007-A9E3-97C35483D6A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.48:*:*:*:*:*:*:*","matchCriteriaId":"BD7A33EC-DE03-424F-9796-E5EA071FF6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.40:*:*:*:*:*:*:*","matchCriteriaId":"CCDAFFA9-0AA4-4C70-9154-8DA4BB255FD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.34:*:*:*:*:*:*:*","matchCriteriaId":"B6302149-28AA-481E-BC6C-87D05E73768A"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:18.30:*:*:*:*:*:*:*","matchCriteriaId":"20DFD9D8-8648-40F7-81B8-04F852A337FA"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.html","source":"security@apache.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/19/5","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/19/6","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/20/2","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/20/3","source":"security@apache.org","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/10/18/2","source":"security@apache.org","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/11/04/8","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/11/07/2","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kyw","source":"security@apache.org","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8","source":"security@apache.org","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00024.html","source":"security@apache.org","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/","source":"security@apache.org"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/","source":"security@apache.org"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"security@apache.org"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"security@apache.org"},{"url":"https://www.debian.org/security/2022/dsa-5188","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5256","source":"security@apache.org","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"security@apache.org","tags":["Patch","Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/19/5","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/19/6","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/20/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/07/20/3","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/10/18/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Patch","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/11/04/8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2022/11/07/2","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kyw","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Mailing List","Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00024.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20240621-0006/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.debian.org/security/2022/dsa-5188","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5256","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2022-21540","sourceIdentifier":"secalert_us@oracle.com","published":"2022-07-19T22:15:11.730","lastModified":"2026-05-27T15:16:21.660","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 and 22.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Hotspot). Las versiones afectadas son Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edition: 20.3.6, 21.3.2 y 22.1.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en un acceso de lectura no autorizado a un subconjunto de datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación Base 5.3 (impactos en la Confidencialidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.6:*:*:*:enterprise:*:*:*","matchCriteriaId":"7D961E24-EA18-4217-B5F5-F847726D84E3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.2:*:*:*:enterprise:*:*:*","matchCriteriaId":"601D92C4-F71F-47E2-9041-5C286D2137F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.1.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B18FE85D-C53D-44E9-8992-715820D1264B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.7.0:update343:*:*:*:*:*:*","matchCriteriaId":"6E3C0BA3-FCD3-4CB8-B8C7-F931090A7DBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update333:*:*:*:*:*:*","matchCriteriaId":"EB2A5440-7FA7-4A86-AA19-E2ABBD809B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.15.1:*:*:*:*:*:*:*","matchCriteriaId":"9C0485FC-E4B2-464E-8228-1387AC5F353B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"7AF3539B-0434-4310-AE88-F46864C7C20F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:18.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"F5CC9398-71B6-4480-95ED-EDCE838D157E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.7.0:update343:*:*:*:*:*:*","matchCriteriaId":"60614E43-090E-44D7-94AD-FFAE38FF111F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update333:*:*:*:*:*:*","matchCriteriaId":"131E1C9E-721C-4176-B78B-69C01F90A9A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.15.1:*:*:*:*:*:*:*","matchCriteriaId":"AD4BFA12-588A-4D8D-B45F-648A55EC674C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"0DF70EEA-EC9D-4FFC-B7BE-76F50C34D999"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:18.0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"4EF9CFB1-CEC9-483E-BECF-618190C03944"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"11","versionEndIncluding":"11.0.15","matchCriteriaId":"DD2ADA66-DCD0-4D28-80B2-77A0265CE7B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"13","versionEndIncluding":"13.0.11","matchCriteriaId":"8CA6BC07-2BDA-4913-AF2B-FD2146B0E539"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"15","versionEndIncluding":"15.0.7","matchCriteriaId":"5A2E366B-549D-48C5-B3FB-AD0E8C75AE08"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:*:*:*:*:*:*:*:*","versionStartIncluding":"17","versionEndIncluding":"17.0.3","matchCriteriaId":"15FD6A0B-BB1A-4875-926C-AB1B6EC1A053"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*","matchCriteriaId":"E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*","matchCriteriaId":"02011EDC-20A7-4A16-A592-7C76E0037997"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*","matchCriteriaId":"AC6D4652-1226-4C60-BEDF-01EBF8AC0849"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*","matchCriteriaId":"3C1F9ED7-7D93-41F4-9130-15BA734420AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*","matchCriteriaId":"1CF9CDF1-95D3-4125-A73F-396D2280FC4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*","matchCriteriaId":"A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*","matchCriteriaId":"C28388AB-CFC9-4749-A90F-383F5B905EA9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*","matchCriteriaId":"DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*","matchCriteriaId":"CA7AD457-6CE6-4925-8D94-A907B40233D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*","matchCriteriaId":"A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*","matchCriteriaId":"5480E5AD-DB46-474A-9B57-84ED088A75FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*","matchCriteriaId":"881A4AE9-6012-4E91-98BE-0A352CC20703"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*","matchCriteriaId":"7E1E1079-57D9-473B-A017-964F4745F329"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*","matchCriteriaId":"B8D6446E-2915-4F12-87BE-E7420BC2626E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*","matchCriteriaId":"564EDCE3-16E6-401D-8A43-032D1F8875E1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*","matchCriteriaId":"08278802-D31B-488A-BA6A-EBC816DF883A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*","matchCriteriaId":"72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*","matchCriteriaId":"7BBB0969-565E-43E2-B067-A10AAA5F1958"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*","matchCriteriaId":"D78BE95D-6270-469A-8035-FCDDB398F952"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*","matchCriteriaId":"88C24F40-3150-4584-93D9-8307DE04EEE9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*","matchCriteriaId":"E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*","matchCriteriaId":"19626B36-62FC-4497-A2E1-7D6CD9839B19"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*","matchCriteriaId":"5713AEBD-35F6-44E8-A0CC-A42830D7AE20"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*","matchCriteriaId":"8BE0C04B-440E-4B35-ACC8-6264514F764C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*","matchCriteriaId":"555EC2A6-0475-48ED-AE0C-B306714A9333"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*","matchCriteriaId":"EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*","matchCriteriaId":"02C55E2E-AEDE-455C-B128-168C918B5D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*","matchCriteriaId":"81831D37-6597-441B-87DE-38F7191BEA42"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update281:*:*:*:*:*:*","matchCriteriaId":"EEA1594D-0AB5-436D-9E60-C26EE2175753"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update291:*:*:*:*:*:*","matchCriteriaId":"B868FA41-C71B-491C-880B-484740B30C72"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update3:*:*:*:*:*:*","matchCriteriaId":"C242D3BE-9114-4A9E-BB78-45754C7CC450"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update301:*:*:*:*:*:*","matchCriteriaId":"95954182-9541-4181-9647-B17FA5A79F9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update311:*:*:*:*:*:*","matchCriteriaId":"9F6F0137-F91F-4028-BED2-C29640D52C23"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update321:*:*:*:*:*:*","matchCriteriaId":"EAFB6B15-4AE6-47FC-8847-9DFADB7AE253"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update4:*:*:*:*:*:*","matchCriteriaId":"D61068FE-18EE-4ADB-BC69-A3ECE8724575"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update40:*:*:*:*:*:*","matchCriteriaId":"EFB59E80-4EC4-4399-BF40-6733E4E475A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update45:*:*:*:*:*:*","matchCriteriaId":"84E31265-22E1-4E91-BFCB-D2AFF445926A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update5:*:*:*:*:*:*","matchCriteriaId":"AB3A58C3-94BB-4120-BE1D-AAF8BBF7F22B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update51:*:*:*:*:*:*","matchCriteriaId":"50319E52-8739-47C5-B61E-3CA9B6A9A48F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update55:*:*:*:*:*:*","matchCriteriaId":"7ED515B9-DC74-4DC5-B98A-08D87D85E11E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update6:*:*:*:*:*:*","matchCriteriaId":"6D1D4868-1F9F-43F7-968C-6469B67D3F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update60:*:*:*:*:*:*","matchCriteriaId":"568F1AC4-B0D7-4438-82E5-0E61500F2240"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update65:*:*:*:*:*:*","matchCriteriaId":"F5E99B4A-EDAD-4471-81C4-7E9C775C9D9F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update67:*:*:*:*:*:*","matchCriteriaId":"14E9133E-9FF3-40DB-9A11-7469EF5FD265"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update7:*:*:*:*:*:*","matchCriteriaId":"94834710-3FA9-49D9-8600-B514CBCA4270"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update72:*:*:*:*:*:*","matchCriteriaId":"4228D9E1-7D82-4B49-9669-9CDAD7187432"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update76:*:*:*:*:*:*","matchCriteriaId":"F6231F48-2936-4F7D-96D5-4BA11F78EBE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update80:*:*:*:*:*:*","matchCriteriaId":"D96D5061-4A81-497E-9AD6-A8381B3B454C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update85:*:*:*:*:*:*","matchCriteriaId":"5345C21E-A01B-43B9-9A20-F2783D921C60"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update9:*:*:*:*:*:*","matchCriteriaId":"B219F360-83BD-4111-AB59-C9D4F55AF4C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update91:*:*:*:*:*:*","matchCriteriaId":"D25377EA-8E8F-4C76-8EA9-3BBDFB352815"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update95:*:*:*:*:*:*","matchCriteriaId":"59FEFE05-269A-4EAF-A80F-E4C2107B1197"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update97:*:*:*:*:*:*","matchCriteriaId":"E7E2AA7C-F602-4DB7-9EC1-0708C46C253C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:7:update99:*:*:*:*:*:*","matchCriteriaId":"FB70E154-A304-429E-80F5-8D87B00E32D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*","matchCriteriaId":"70892D06-6E75-4425-BBF0-4B684EC62A1C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*","matchCriteriaId":"7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*","matchCriteriaId":"7417B2BB-9AC2-4AF4-A828-C89A0735AD92"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*","matchCriteriaId":"6A0A57B5-6F88-4288-9CDE-F6613FE068D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*","matchCriteriaId":"67ED8559-C348-4932-B7CE-CB96976A30EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*","matchCriteriaId":"40AC3D91-263F-4345-9FAA-0E573EA64590"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*","matchCriteriaId":"DD92AFA9-81F8-48D4-B79A-E7F066F69A99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*","matchCriteriaId":"2C4B2F24-A730-4818-90C8-A2D90C081F03"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*","matchCriteriaId":"464087F2-C285-4574-957E-CE0663F07DE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*","matchCriteriaId":"3E9BB880-A4F6-4887-8BB9-47AA298753D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*","matchCriteriaId":"18DCFF53-B298-4534-AB5C-8A5EF59C616F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*","matchCriteriaId":"083419F8-FDDF-4E36-88F8-857DB317C1D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*","matchCriteriaId":"D7A74F65-57E8-4C9A-BA96-5EF401504F13"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*","matchCriteriaId":"0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*","matchCriteriaId":"07812576-3C35-404C-A7D7-9BE9E3D76E00"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*","matchCriteriaId":"00C52B1C-5447-4282-9667-9EBE0720B423"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*","matchCriteriaId":"92BB9EB0-0C12-4E77-89EE-FB77097841B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*","matchCriteriaId":"FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*","matchCriteriaId":"ABC0E7BB-F8B7-4369-9910-71240E4073A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*","matchCriteriaId":"551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*","matchCriteriaId":"0AE30779-48FB-451E-8CE1-F469F93B8772"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*","matchCriteriaId":"60590FDE-7156-4314-A012-AA38BD2ADDC9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*","matchCriteriaId":"BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*","matchCriteriaId":"F24F6122-2256-41B6-9033-794C6424ED99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*","matchCriteriaId":"0EAFA79E-8C7A-48CF-8868-11378FE4B26F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*","matchCriteriaId":"D1D6F19F-59B5-4BB6-AD35-013384025970"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*","matchCriteriaId":"E7BA97BC-3ADA-465A-835B-6C3C5F416B56"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*","matchCriteriaId":"B71F77A4-B7EB-47A1-AAFD-431A7D040B86"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*","matchCriteriaId":"91D6BEA9-5943-44A4-946D-CEAA9BA99376"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*","matchCriteriaId":"C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*","matchCriteriaId":"2CB74086-14B8-4237-8357-E0C6B5BB8313"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*","matchCriteriaId":"3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*","matchCriteriaId":"00C2B9C9-1177-4DA6-96CE-55F37F383F99"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*","matchCriteriaId":"435CF189-0BD8-40DF-A0DC-99862CDEAF8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*","matchCriteriaId":"12A3F367-33AD-47C3-BFDC-871A17E72C94"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*","matchCriteriaId":"A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*","matchCriteriaId":"78261932-7373-4F16-91E0-1A72ADBEBC3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*","matchCriteriaId":"9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*","matchCriteriaId":"B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*","matchCriteriaId":"F5A40B8A-D428-4008-9F21-AF21394C51D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*","matchCriteriaId":"FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update271:*:*:*:*:*:*","matchCriteriaId":"3B504718-5DCE-43B4-B19A-C6B6E7444BD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update281:*:*:*:*:*:*","matchCriteriaId":"3102AA10-99A8-49A9-867E-7EEC56865680"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update282:*:*:*:*:*:*","matchCriteriaId":"5A55CBC7-A7B2-4B89-8AB5-ED30DBE6814E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update291:*:*:*:*:*:*","matchCriteriaId":"15BA8A26-2CDA-442B-A549-6BE92DCCD205"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*","matchCriteriaId":"56F2883B-6A1B-4081-8877-07AF3A73F6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update302:*:*:*:*:*:*","matchCriteriaId":"98C0742E-ACDD-4DB4-8A4C-B96702C8976C"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update31:*:*:*:*:*:*","matchCriteriaId":"F8483034-DD5A-445D-892F-CDE90A7D58EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update312:*:*:*:*:*:*","matchCriteriaId":"1716A5CD-1C32-4F19-9DDE-F9C7CCB6B420"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update322:*:*:*:*:*:*","matchCriteriaId":"DAB4F663-BCAF-43DB-BCC3-24C060B0CBAB"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update332:*:*:*:*:*:*","matchCriteriaId":"A8EF5BB8-7DAF-49B0-A11E-14E89EF7377A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update40:*:*:*:*:*:*","matchCriteriaId":"8279718F-878F-4868-8859-1728D13CD0D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update45:*:*:*:*:*:*","matchCriteriaId":"2C024E1A-FD2C-42E8-B227-C2AFD3040436"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update5:*:*:*:*:*:*","matchCriteriaId":"4F24389D-DDD0-4204-AA24-31C920A4F47E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update51:*:*:*:*:*:*","matchCriteriaId":"966979BE-1F21-4729-B6B8-610F74648344"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update60:*:*:*:*:*:*","matchCriteriaId":"F8534265-33BF-460D-BF74-5F55FDE50F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update65:*:*:*:*:*:*","matchCriteriaId":"F77AFC25-1466-4E56-9D5F-6988F3288E16"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update66:*:*:*:*:*:*","matchCriteriaId":"A650BEB8-E56F-4E42-9361-8D2DB083F0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update71:*:*:*:*:*:*","matchCriteriaId":"799FFECD-E80A-44B3-953D-CDB5E195F3AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update72:*:*:*:*:*:*","matchCriteriaId":"A7047507-7CAF-4A14-AA9A-5CEF806EDE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update73:*:*:*:*:*:*","matchCriteriaId":"CFC7B179-95D3-4F94-84F6-73F1034A1AF2"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update74:*:*:*:*:*:*","matchCriteriaId":"9FB28526-9385-44CA-AF08-1899E6C3AE4D"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update77:*:*:*:*:*:*","matchCriteriaId":"E26B69E4-0B43-415F-A82B-52FDCB262B3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update91:*:*:*:*:*:*","matchCriteriaId":"27BC4150-70EC-462B-8FC5-20B3442CBB31"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:8:update92:*:*:*:*:*:*","matchCriteriaId":"02646989-ECD9-40AE-A83E-EFF4080C69B9"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:openjdk:18:*:*:*:*:*:*:*","matchCriteriaId":"56CBFC1F-C120-44F2-877A-C1C880AA89C4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","matchCriteriaId":"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:6.47:*:*:*:*:*:*:*","matchCriteriaId":"4E4633C4-E552-439D-8FE4-139E3A7956CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.54:*:*:*:*:*:*:*","matchCriteriaId":"50C77346-8893-44F0-B0D1-5D4D30A9CA3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.62:*:*:*:*:*:*:*","matchCriteriaId":"63E58DE0-A96A-452E-986F-3BD2FEA7C723"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.56:*:*:*:*:*:*:*","matchCriteriaId":"D3FB1BF4-3FCF-4007-A9E3-97C35483D6A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.48:*:*:*:*:*:*:*","matchCriteriaId":"BD7A33EC-DE03-424F-9796-E5EA071FF6CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.40:*:*:*:*:*:*:*","matchCriteriaId":"CCDAFFA9-0AA4-4C70-9154-8DA4BB255FD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.34:*:*:*:*:*:*:*","matchCriteriaId":"B6302149-28AA-481E-BC6C-87D05E73768A"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:18.30:*:*:*:*:*:*:*","matchCriteriaId":"20DFD9D8-8648-40F7-81B8-04F852A337FA"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/","source":"secalert_us@oracle.com"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5188","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5188","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21549","sourceIdentifier":"secalert_us@oracle.com","published":"2022-07-19T22:15:12.147","lastModified":"2026-05-27T15:16:21.990","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle GraalVM Enterprise Edition: 21.3.2 and 22.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Libraries). Las versiones afectadas son Oracle Java SE: 17.0.3.1; Oracle GraalVM Enterprise Edition: 21.3.2 y 22.1.0. La vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en el acceso no autorizado a la actualización, inserción o eliminación de algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen de la sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1, Puntuación Base 5.3 (impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-502"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.2:*:*:*:enterprise:*:*:*","matchCriteriaId":"601D92C4-F71F-47E2-9041-5C286D2137F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.1.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"B18FE85D-C53D-44E9-8992-715820D1264B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"7AF3539B-0434-4310-AE88-F46864C7C20F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"0DF70EEA-EC9D-4FFC-B7BE-76F50C34D999"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.34:*:*:*:*:*:*:*","matchCriteriaId":"B6302149-28AA-481E-BC6C-87D05E73768A"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","matchCriteriaId":"FA6FEEC2-9F11-4643-8827-749718254FED"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*","matchCriteriaId":"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*","matchCriteriaId":"B55E8D50-99B4-47EC-86F9-699B67D473CE"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"A3C19813-E823-456A-B1CE-EC0684CE1953"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*","matchCriteriaId":"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"},{"vulnerable":true,"criteria":"cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*","matchCriteriaId":"AD7447BC-F315-4298-A822-549942FC118B"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NQICCJXXAYMCCXOO24R4W7Q3RSKCYDMX/","source":"secalert_us@oracle.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UKJCLA2GDNF4B7ZRKORQ2TIR56AHJ4VC/","source":"secalert_us@oracle.com"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NQICCJXXAYMCCXOO24R4W7Q3RSKCYDMX/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UKJCLA2GDNF4B7ZRKORQ2TIR56AHJ4VC/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20220729-0009/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2022/dsa-5192","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpujul2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-38013","sourceIdentifier":"secure@microsoft.com","published":"2022-09-13T19:15:12.867","lastModified":"2026-05-27T14:16:39.833","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":".NET Core and Visual Studio Denial of Service Vulnerability"},{"lang":"es","value":"Una vulnerabilidad de Denegación de Servicio en .NET Core and Visual Studio"}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*","matchCriteriaId":"1DE0C8DD-9C73-4876-8193-068F18074B58"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*","matchCriteriaId":"70BE107E-20A0-4998-A8ED-BCC414C6BDBF"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*","matchCriteriaId":"DF6CF9B0-D279-42CD-A84D-48327F44422D"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2019:16.11:*:*:*:*:*:*:*","matchCriteriaId":"99E7DAC9-17EF-40D4-AEEC-C24970B7190F"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*","matchCriteriaId":"3393F97F-05CD-4B04-A6E1-3D914652C4E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.2:*:*:*:*:*:*:*","matchCriteriaId":"AB70FC91-06DB-4E92-9C0B-6FDE078F911B"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.3:*:*:*:*:*:*:*","matchCriteriaId":"6C0E9FAF-2CDC-42E4-B2BB-44E6136E3D22"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2022:17.3:*:*:*:*:mac:*:*","matchCriteriaId":"EEAB6255-1A4D-443D-AD81-830E3EC30CFB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*","matchCriteriaId":"E30D0E6F-4AE8-4284-8716-991DFA48CC5D"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38013","source":"secure@microsoft.com"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2CUL3Z7MEED7RFQZVGQL2MTKSFFZKAAY/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7HCV4TQGOTOFHO5ETRKGFKAGYV2YAUVE/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JA6F4CDKLI3MALV6UK3P2DR5AGCLTT7Y/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K4K5YL7USOKIR3O2DUKBZMYPWXYPDKXG/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WL334CKOHA6BQQSYJW365HIWJ4IOE45M/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38013","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-20920","sourceIdentifier":"psirt@cisco.com","published":"2022-10-10T21:15:10.413","lastModified":"2026-05-27T14:16:33.313","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An attacker could exploit this vulnerability by continuously connecting to an affected device and sending specific SSH requests. A successful exploit could allow the attacker to cause the affected device to reload."},{"lang":"es","value":"Una vulnerabilidad en la implementación de SSH del software Cisco IOS y del software Cisco IOS XE podría permitir que un atacante remoto autenticado causara la recarga de un dispositivo afectado. Esta vulnerabilidad es debido al manejo inapropiado de los recursos durante una situación excepcional. Un atacante podría explotar esta vulnerabilidad al conectarse continuamente a un dispositivo afectado y enviando peticiones SSH específicas. Una explotación con éxito podría permitir al atacante causar la recarga del dispositivo afectado"}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Primary","description":[{"lang":"en","value":"CWE-755"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-755"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-755"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(6\\)i1:*:*:*:*:*:*:*","matchCriteriaId":"BEAFD220-48D7-46EE-8537-A69C5F8D0F2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)ex:*:*:*:*:*:*:*","matchCriteriaId":"AABCE40E-04D5-4248-A374-EAB938575C2F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)ey:*:*:*:*:*:*:*","matchCriteriaId":"A61323E0-9CBA-4629-87C8-9F8B59ABD4A9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)ey1:*:*:*:*:*:*:*","matchCriteriaId":"8D2A859E-3B77-4CAE-A38D-C1CF3FFB6DAE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)ey2:*:*:*:*:*:*:*","matchCriteriaId":"91CCEA43-40D6-4A6A-A235-2301DE7C4056"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)ez:*:*:*:*:*:*:*","matchCriteriaId":"7ABC42E8-E304-4D00-8C6C-604F3EE13DF6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)se:*:*:*:*:*:*:*","matchCriteriaId":"F9D38633-31AE-42E9-8FFA-77C8EFA9AABB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)se1:*:*:*:*:*:*:*","matchCriteriaId":"A6D6D9CC-70F0-475C-8AB0-48980596BE47"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(58\\)se2:*:*:*:*:*:*:*","matchCriteriaId":"BEECEF97-EC6A-43C8-A7AB-5C48948183FA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez:*:*:*:*:*:*:*","matchCriteriaId":"69AB39F8-5D39-4E8A-A8A5-B91718D37A1A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez1:*:*:*:*:*:*:*","matchCriteriaId":"63328822-DC2E-41A3-9E12-F5F824847AFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez2:*:*:*:*:*:*:*","matchCriteriaId":"350D9AFE-66AD-486B-B42D-E6A3CE62640C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez3:*:*:*:*:*:*:*","matchCriteriaId":"73D67BDA-AEA7-4ED2-AFA4-20283B446602"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez4:*:*:*:*:*:*:*","matchCriteriaId":"8D593974-6D7B-4AF8-85B2-A77D8BE5CD6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez5:*:*:*:*:*:*:*","matchCriteriaId":"C7B4BFC4-F2C9-4D5E-AD22-3AAF36CFB12A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez6:*:*:*:*:*:*:*","matchCriteriaId":"DA2E6D25-7528-4433-9BB3-4F45DB0FE8B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez7:*:*:*:*:*:*:*","matchCriteriaId":"F3E1ADA5-C782-4F8A-A77C-A895B402A792"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez8:*:*:*:*:*:*:*","matchCriteriaId":"698C897E-CE32-4350-9315-DEE4EA5FF02C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez9:*:*:*:*:*:*:*","matchCriteriaId":"76C7FF79-0AFF-4DB5-BDCA-797B8FAB7F8B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez10:*:*:*:*:*:*:*","matchCriteriaId":"CF2B02DE-CE0C-47E1-91BF-F115EE970B7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez11:*:*:*:*:*:*:*","matchCriteriaId":"C5374A08-2788-40A0-82B5-9597C28396EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez12:*:*:*:*:*:*:*","matchCriteriaId":"2C60FD51-3FD8-48F4-98EF-FEDAAF9BC52B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez13:*:*:*:*:*:*:*","matchCriteriaId":"2CF1CE90-F107-4009-B2E4-19D6123B944D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez14:*:*:*:*:*:*:*","matchCriteriaId":"AC92E458-DC3F-4179-B6E6-14562F4291B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2\\(60\\)ez15:*:*:*:*:*:*:*","matchCriteriaId":"1867205D-5158-41BB-8358-1A870E9DE814"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2ex:*:*:*:*:*:*:*","matchCriteriaId":"0912492E-565A-4559-ABB8-D2898F06CF29"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2ey:*:*:*:*:*:*:*","matchCriteriaId":"2CD6421A-D8C4-4A3E-9497-4AC130CFE597"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2ez:*:*:*:*:*:*:*","matchCriteriaId":"91F44EC8-13BF-4032-9EBA-0D50C6A353BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2i:*:*:*:*:*:*:*","matchCriteriaId":"5856014C-B4B8-47A1-86A2-CD921AB18320"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.2se:*:*:*:*:*:*:*","matchCriteriaId":"F05A548B-C443-4C15-B636-64C1F9B9860D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)md:*:*:*:*:*:*:*","matchCriteriaId":"498A43E2-5A03-46C9-B60D-8E7CE79F1705"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)md1:*:*:*:*:*:*:*","matchCriteriaId":"B003515C-B9DD-40D7-9F7E-97AE5FDC984F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)md2:*:*:*:*:*:*:*","matchCriteriaId":"D83AF6ED-1704-48B4-B5E4-E32CF0DF07FD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda:*:*:*:*:*:*:*","matchCriteriaId":"6EB30791-A691-42DD-8714-B173242EDBBF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda1:*:*:*:*:*:*:*","matchCriteriaId":"E61B059C-5457-42D2-BE37-559B36E7865B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda2:*:*:*:*:*:*:*","matchCriteriaId":"50B87F96-2F12-43C4-BABE-13C864838E5D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda3:*:*:*:*:*:*:*","matchCriteriaId":"A8FCAE0E-F871-4F65-82F2-4690D345298B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda4:*:*:*:*:*:*:*","matchCriteriaId":"72F162DF-8131-40A6-BC47-0A71CDD96D49"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda5:*:*:*:*:*:*:*","matchCriteriaId":"9D982FA3-6473-46A7-8F16-17D7FCE33551"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)mda6:*:*:*:*:*:*:*","matchCriteriaId":"37B94C23-763C-4249-AE16-97D17124F5B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t:*:*:*:*:*:*:*","matchCriteriaId":"2BD17B45-17BC-43BD-A180-AACEE0888D24"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"039F72C1-FCA3-4403-90A0-C4B507D9A85C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"2B83D2BE-762D-4D74-B9C4-BF765DCF31B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"874F3BFC-CC93-42C6-A168-ED554AB1713C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"4479287A-64FD-40A3-8C92-2C52FD902F4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)t5:*:*:*:*:*:*:*","matchCriteriaId":"4C3D5843-A77C-42AB-9A3F-F8F18E2854C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr1:*:*:*:*:*:*:*","matchCriteriaId":"8A422DC5-DBED-447C-8E1F-BE75B70EF677"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr2:*:*:*:*:*:*:*","matchCriteriaId":"E7837CF7-9CAD-4650-901F-587E3F2F5694"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr3:*:*:*:*:*:*:*","matchCriteriaId":"905571F1-D7E7-4266-9DEB-AD45C4EFDA82"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr4:*:*:*:*:*:*:*","matchCriteriaId":"68DD52B2-811C-4599-8DAF-B990BF6F4135"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr5:*:*:*:*:*:*:*","matchCriteriaId":"BA7F96A8-8F7B-417F-93E0-9780E9199A19"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr6:*:*:*:*:*:*:*","matchCriteriaId":"6354ECE9-4B45-4998-BEA9-4F1740FD3759"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr7:*:*:*:*:*:*:*","matchCriteriaId":"2FFD59CA-9FB4-4C63-B776-719DCDAC5B22"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr8:*:*:*:*:*:*:*","matchCriteriaId":"AC0E49AF-FEF7-4749-A648-AB2D3F784F37"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr9:*:*:*:*:*:*:*","matchCriteriaId":"13E6F41A-6C48-415D-8CD2-C73421693158"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr10:*:*:*:*:*:*:*","matchCriteriaId":"F136F045-6B90-4E37-9CDF-D84050DD175E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr11:*:*:*:*:*:*:*","matchCriteriaId":"AFCCCF8A-ADDE-4E67-B9A1-DEBE6C5E4687"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(22\\)xr12:*:*:*:*:*:*:*","matchCriteriaId":"63B3E0D4-B335-4597-A482-F60A2C7BF90E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md:*:*:*:*:*:*:*","matchCriteriaId":"539454C8-EA90-4146-9429-72465CF555FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md1:*:*:*:*:*:*:*","matchCriteriaId":"4E44F5F4-D7FE-4B9C-BA65-2365EF7A8092"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md2:*:*:*:*:*:*:*","matchCriteriaId":"9548BCBF-0E01-41F8-A6BA-D70032340C73"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md3:*:*:*:*:*:*:*","matchCriteriaId":"B9BF1BB8-EAB1-46C9-BD36-73E502619C88"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md4:*:*:*:*:*:*:*","matchCriteriaId":"34F23388-1B0B-4708-85F4-5A8B7359C1B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md5:*:*:*:*:*:*:*","matchCriteriaId":"F6728EA8-00AC-4BE1-AA48-22D8AA861532"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md6:*:*:*:*:*:*:*","matchCriteriaId":"10090F0A-645B-451E-ABAA-57DCA9C081E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)md7:*:*:*:*:*:*:*","matchCriteriaId":"B87BBFE8-2D55-4CDF-B624-6B509411945B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda:*:*:*:*:*:*:*","matchCriteriaId":"D0F2A946-AD8A-4644-8630-5951B66E4B34"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda1:*:*:*:*:*:*:*","matchCriteriaId":"CD74F179-FDAB-465D-80D5-65711B34D12C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda2:*:*:*:*:*:*:*","matchCriteriaId":"94615285-655F-436B-A967-D8FFCF4B7794"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda3:*:*:*:*:*:*:*","matchCriteriaId":"491BFBBE-1B48-4F58-96BA-E0B065DF2BA6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda4:*:*:*:*:*:*:*","matchCriteriaId":"59F2AFD4-D5D6-4D4F-9085-6869738B56B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda5:*:*:*:*:*:*:*","matchCriteriaId":"D794DE0F-12BF-421E-8E5A-A505501EA0F7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda6:*:*:*:*:*:*:*","matchCriteriaId":"EF65A6E8-8D58-4537-8AE6-DE4A72FF3A58"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda7:*:*:*:*:*:*:*","matchCriteriaId":"9622A8CF-0C0A-4CED-B469-CAA868970323"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda8:*:*:*:*:*:*:*","matchCriteriaId":"A9746F30-F1AD-4643-8BAD-6FD049B7536F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda9:*:*:*:*:*:*:*","matchCriteriaId":"C533F5D8-9C23-4D7E-8C58-56B65AD76AEA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda10:*:*:*:*:*:*:*","matchCriteriaId":"CB531CBC-8EE0-46B0-88C5-2362837729E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda11:*:*:*:*:*:*:*","matchCriteriaId":"3E4485F3-AF11-4E2D-AF01-8243D9C8A851"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda12:*:*:*:*:*:*:*","matchCriteriaId":"F4433412-E849-4040-BAA5-1CE9CE17B924"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mda13:*:*:*:*:*:*:*","matchCriteriaId":"4E9B1DF0-A3D9-4AFD-9305-C156A8CB101C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb:*:*:*:*:*:*:*","matchCriteriaId":"1591B1A2-15AB-4226-B0E3-AEA84D0A7928"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb1:*:*:*:*:*:*:*","matchCriteriaId":"B2D85C68-9A72-4C6F-89C4-CAACFAE7C76A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb3:*:*:*:*:*:*:*","matchCriteriaId":"B0CA4EEA-9AE8-4F5A-9FDF-A6CFA503ADF0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb4:*:*:*:*:*:*:*","matchCriteriaId":"0532182F-A3BB-42EF-A2E5-B3B1C092335B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb5:*:*:*:*:*:*:*","matchCriteriaId":"DD686C04-03E3-409B-B92A-D9177924340F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb5a:*:*:*:*:*:*:*","matchCriteriaId":"32A7C36F-FC21-4BEA-920F-9F3F9CA76C78"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb6:*:*:*:*:*:*:*","matchCriteriaId":"74487E59-3809-4054-89CA-ED7900A793A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb7:*:*:*:*:*:*:*","matchCriteriaId":"B9B174D7-FE10-4416-9572-CE00FF580A5A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb8:*:*:*:*:*:*:*","matchCriteriaId":"BE654FD0-AC27-49B7-91FD-8F15FE78E97B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb9:*:*:*:*:*:*:*","matchCriteriaId":"AB46CA20-CDCA-495E-A4DB-5BDB9AC5BC82"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb10:*:*:*:*:*:*:*","matchCriteriaId":"A9C02086-1473-403B-97AF-8500104E6C96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb11:*:*:*:*:*:*:*","matchCriteriaId":"ED2ED2BA-9D3E-412B-86C2-2A0E9588E84D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb12:*:*:*:*:*:*:*","matchCriteriaId":"9AC9CBDA-AFED-45E7-91CC-8AFD887122D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb13:*:*:*:*:*:*:*","matchCriteriaId":"FCA93FA2-0C10-4809-8EE3-3445DC5B1E05"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb14:*:*:*:*:*:*:*","matchCriteriaId":"1ED0CFC4-95B0-420B-B6C2-EB953B93628F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb15:*:*:*:*:*:*:*","matchCriteriaId":"3E24E081-FF09-4569-B83C-C46F390CD6A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb16:*:*:*:*:*:*:*","matchCriteriaId":"50FB8B6D-69F6-4619-8F76-0EB92C785F52"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb17:*:*:*:*:*:*:*","matchCriteriaId":"BF02D7D8-124C-4CE8-BF32-D6C7851B3B8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb18:*:*:*:*:*:*:*","matchCriteriaId":"45D741B6-6599-4209-9D6C-06570FBF4B66"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)mdb19:*:*:*:*:*:*:*","matchCriteriaId":"CA97E52D-1053-4704-B404-B85B99F46CA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t:*:*:*:*:*:*:*","matchCriteriaId":"4A9C9B9C-2064-4130-95B9-5BCE4BB97789"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"2A6AD6E5-EBB0-44D8-A63C-EFF7260E4CC3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"8C8B1B14-6FCA-423D-B49B-D07624DAE4BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"E88A1ADC-A53A-407F-80F7-A0EF5359DDAE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t3e:*:*:*:*:*:*:*","matchCriteriaId":"775CF994-36BE-4456-99CD-1FDEA5CC9B30"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t3f:*:*:*:*:*:*:*","matchCriteriaId":"766668CA-B5BF-4D80-811E-B2E6396AC6BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"7937F33C-95A5-4D38-B574-1B04051DC10A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4a:*:*:*:*:*:*:*","matchCriteriaId":"5AF7258F-C4A4-4E56-88B0-CF1536AEE9F1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4b:*:*:*:*:*:*:*","matchCriteriaId":"605EC471-A558-4414-B691-1E852EA7EE63"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4c:*:*:*:*:*:*:*","matchCriteriaId":"53830355-05F7-4A49-A0D9-731F43870F7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4d:*:*:*:*:*:*:*","matchCriteriaId":"A5ED4DEB-4DCF-4660-8D4C-059537A5B144"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4e:*:*:*:*:*:*:*","matchCriteriaId":"8294E41A-AE2A-4EEA-A932-45CFB294A48C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4f:*:*:*:*:*:*:*","matchCriteriaId":"6EC9B0EA-FDF6-49D0-8118-4F336750E473"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4g:*:*:*:*:*:*:*","matchCriteriaId":"200B3BF9-7B00-4CD0-A750-FF154A440F2C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4h:*:*:*:*:*:*:*","matchCriteriaId":"1C1016C1-093E-4A34-91B1-5DB93D997D9D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4i:*:*:*:*:*:*:*","matchCriteriaId":"F28E7FE9-3CBD-4EA2-AB0A-2F1F685E6E44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4j:*:*:*:*:*:*:*","matchCriteriaId":"511E36B7-8955-47A0-8B39-A0BFD98BE6F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4k:*:*:*:*:*:*:*","matchCriteriaId":"64DE60EC-27AF-47A2-97CA-664E1C566F65"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4l:*:*:*:*:*:*:*","matchCriteriaId":"8CB4F895-D790-4A23-ADDF-5EFCA9B86208"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4m:*:*:*:*:*:*:*","matchCriteriaId":"32F56257-263B-45DF-B84E-23188515C403"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4n:*:*:*:*:*:*:*","matchCriteriaId":"186A88F7-B729-42B7-B590-493C0111F3B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t4o:*:*:*:*:*:*:*","matchCriteriaId":"BF86BF7E-16AE-4732-A4AD-E2E3871E8BC1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t5:*:*:*:*:*:*:*","matchCriteriaId":"07E00079-3EB8-4FE5-A977-CF78673D7AE6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t6:*:*:*:*:*:*:*","matchCriteriaId":"E36204F5-1257-4A08-8764-8700C4545FBF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t7:*:*:*:*:*:*:*","matchCriteriaId":"4F288BF4-A550-4807-9C02-F6A93B8D1AAE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t8:*:*:*:*:*:*:*","matchCriteriaId":"1B1A64DF-83BF-41CA-839F-72C7E8A9A7A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t9:*:*:*:*:*:*:*","matchCriteriaId":"DBC54714-538D-49DA-9949-9F0F592608B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t10:*:*:*:*:*:*:*","matchCriteriaId":"D6676E73-CE6C-4418-9E45-BF76BDFF37F7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t11:*:*:*:*:*:*:*","matchCriteriaId":"84CAE4B2-109B-467B-B876-4617AE7BE48A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)t12:*:*:*:*:*:*:*","matchCriteriaId":"AA8BE45B-5472-4003-9ADC-7DBC56038528"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)yg:*:*:*:*:*:*:*","matchCriteriaId":"1971F3C9-8B6A-4211-94E4-441CC4A963B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)yg1:*:*:*:*:*:*:*","matchCriteriaId":"98963D57-18BE-49D2-A3FF-35E86F3AEF12"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)yg2:*:*:*:*:*:*:*","matchCriteriaId":"BE1ED725-DEFC-41CC-AF37-753F506B0690"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)yg3:*:*:*:*:*:*:*","matchCriteriaId":"18CD57A0-D85C-4110-B810-4B866475B9A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)yg4:*:*:*:*:*:*:*","matchCriteriaId":"1B6789D8-C2EC-4631-9B72-B645A5C04985"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys:*:*:*:*:*:*:*","matchCriteriaId":"59C5FDA6-2441-43BE-941C-086D9B899057"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys1:*:*:*:*:*:*:*","matchCriteriaId":"8359C4B7-2DD4-4D25-B0B6-6596F19D5BBA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys2:*:*:*:*:*:*:*","matchCriteriaId":"553FA0C1-BE0B-4543-A9A5-2AED39500C8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys3:*:*:*:*:*:*:*","matchCriteriaId":"0595339E-8826-4B52-A6D6-B924268B8825"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys4:*:*:*:*:*:*:*","matchCriteriaId":"E5952C8E-FEFA-40E3-9F0A-C1F8A4D5D703"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys5:*:*:*:*:*:*:*","matchCriteriaId":"C21895D4-2200-4B4C-B03D-3C530D136ADC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys6:*:*:*:*:*:*:*","matchCriteriaId":"B240225D-EE20-46F1-B127-0DF4671AA280"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys7:*:*:*:*:*:*:*","matchCriteriaId":"13D9283F-8E4B-4D19-BEA9-461E3A8CB1D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys8:*:*:*:*:*:*:*","matchCriteriaId":"5FC33D5F-64A5-40AC-A567-105F6599F9C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys8a:*:*:*:*:*:*:*","matchCriteriaId":"286C1E6E-4FB6-47DE-B58E-D281F61E429C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys9:*:*:*:*:*:*:*","matchCriteriaId":"50A01132-EFF7-4A22-890E-C948589EEF32"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4\\(24\\)ys10:*:*:*:*:*:*:*","matchCriteriaId":"438F58B1-DBFE-4E5F-AA60-423C7D498D70"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4md:*:*:*:*:*:*:*","matchCriteriaId":"A2222EED-6CB2-4D18-8AF5-FAE55BC6213F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4mda:*:*:*:*:*:*:*","matchCriteriaId":"237F6EDD-AB47-4768-9C75-C0B03E23696B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4mdb:*:*:*:*:*:*:*","matchCriteriaId":"620B4962-1EA7-478F-AA0A-06DC7ED83B76"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4t:*:*:*:*:*:*:*","matchCriteriaId":"BEAD7398-D1B2-47FB-952D-8C3162D5A363"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4xr:*:*:*:*:*:*:*","matchCriteriaId":"AC90BE87-EB54-46F8-A1FD-8F4E553C69F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4yg:*:*:*:*:*:*:*","matchCriteriaId":"6D910556-9518-45C5-9891-1541760B0920"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:12.4ys:*:*:*:*:*:*:*","matchCriteriaId":"65C71B4D-E3C0-48C3-8690-33905E93A834"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)ex:*:*:*:*:*:*:*","matchCriteriaId":"189B0C7C-D794-43EB-A6C6-F29C4B9623A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)ey:*:*:*:*:*:*:*","matchCriteriaId":"5AF55C0A-768F-445A-AF40-2B553363AF18"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)ey1:*:*:*:*:*:*:*","matchCriteriaId":"C9E7D5CC-521E-4B2A-B6DB-D2A49D31DE4B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)ey2:*:*:*:*:*:*:*","matchCriteriaId":"10D75DC6-D7B1-46D2-ABEF-97D908992FF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m:*:*:*:*:*:*:*","matchCriteriaId":"B97701A6-F7AE-4D14-A5C1-8F7743256766"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"AB788EFF-FB9E-41BC-B8FD-8EE40F657B47"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"A801C7F1-7E15-4B40-A2F0-DD181F13DB3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"0A735690-4813-486E-929A-2F97F51FDEBA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"A6BB6662-6683-4EA7-B2E2-984FB68977AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"5C8720B1-11DF-47E6-90C3-F0D3F77E69D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"50FA81AE-B37E-4F38-ABAD-44EF200FA5CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m6a:*:*:*:*:*:*:*","matchCriteriaId":"027A76BE-F9F3-477C-BFAC-9D9094B76F6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"3083C5E7-A17A-4744-A700-697FF50B5444"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"3E760F98-3A9B-48BE-83AD-22672B15C619"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"049F7107-B407-4F99-8688-738AF3AF4CBB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"97EC3675-6213-4AA2-9C91-73A89AD7D98C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)mr:*:*:*:*:*:*:*","matchCriteriaId":"82608B6F-BB73-4A62-881C-636BF1BF1CA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"F9B9B664-5B90-4F3A-BD6C-33F0AAC75CEE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"54966D6A-5471-4685-9FCC-C3F75297F2A1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"A6AEE27B-B0A8-486C-8E12-D789047401B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s3a:*:*:*:*:*:*:*","matchCriteriaId":"A61A54FC-77F0-4BAB-8AE5-3E8D60EC14E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"57F73E68-CCD1-424E-91BC-5D30241EE797"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s4a:*:*:*:*:*:*:*","matchCriteriaId":"2E286E50-601F-4285-ABE0-B829FF9DF0EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"412B45A9-AC1C-4142-81FA-8E60FA189726"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"1F40AF3A-596C-469E-968C-9747042A70A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)se:*:*:*:*:*:*:*","matchCriteriaId":"971AAF00-63AA-4B3F-8E0F-B8FBD011C071"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)se1:*:*:*:*:*:*:*","matchCriteriaId":"551A0087-5926-46AF-B1DA-3AA18FAB87E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)se2:*:*:*:*:*:*:*","matchCriteriaId":"E19A2402-F662-4900-8137-B14EB2537173"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)se3:*:*:*:*:*:*:*","matchCriteriaId":"5757C194-AF18-434C-9F19-2FC775720556"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa:*:*:*:*:*:*:*","matchCriteriaId":"5350BD36-86A8-4C33-B638-EF287DA8622F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa1:*:*:*:*:*:*:*","matchCriteriaId":"E145F9B7-ECAF-432F-B6FB-7CB5EA97B17C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa2:*:*:*:*:*:*:*","matchCriteriaId":"FBC60D5E-0005-4FF6-B55E-FE344C9BC58D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa3:*:*:*:*:*:*:*","matchCriteriaId":"984EC0F5-F270-470C-A959-919B0B7A7B26"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa4:*:*:*:*:*:*:*","matchCriteriaId":"57726EE6-38B3-4F1F-8DFF-0891C85395A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(1\\)xa5:*:*:*:*:*:*:*","matchCriteriaId":"017CDE22-7CC3-4EB6-9131-ABBD5F3FC0DF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ea:*:*:*:*:*:*:*","matchCriteriaId":"C04E6B95-5FD2-4C08-BFFC-148096444DB5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ea1:*:*:*:*:*:*:*","matchCriteriaId":"0CB4363E-49B6-4682-AEF3-6B0AB38A3932"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ej:*:*:*:*:*:*:*","matchCriteriaId":"4C5D50E8-99DB-4B15-B0F2-84674A9346A1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ej1:*:*:*:*:*:*:*","matchCriteriaId":"2A101303-CFB2-4EF9-AD68-AF6D8E1E8148"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ek:*:*:*:*:*:*:*","matchCriteriaId":"114E5F13-3F15-418B-A0AF-038BEABF8445"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ek1:*:*:*:*:*:*:*","matchCriteriaId":"694AA98F-2705-477E-B2EE-75D2CEDB263B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex:*:*:*:*:*:*:*","matchCriteriaId":"C965E814-7ABE-4C45-8EA8-B6818BC213F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex1:*:*:*:*:*:*:*","matchCriteriaId":"4556022D-5B0C-4F7A-868C-9EC01F716D16"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex2:*:*:*:*:*:*:*","matchCriteriaId":"7760B1FF-BC56-49F4-8020-439EA2F53AC5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex3:*:*:*:*:*:*:*","matchCriteriaId":"49229E8B-19ED-4E5E-AA2E-F699C033F4A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex4:*:*:*:*:*:*:*","matchCriteriaId":"D9A4AC61-4386-4218-91B7-6CE776D8050B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex5:*:*:*:*:*:*:*","matchCriteriaId":"59403A6B-3488-4F81-BE3C-A06AF1731B99"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex6:*:*:*:*:*:*:*","matchCriteriaId":"796E5094-9A88-42E2-949B-D6D59651F04B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex7:*:*:*:*:*:*:*","matchCriteriaId":"E8EBCA86-C027-4514-A2A9-613899FD9A01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex8:*:*:*:*:*:*:*","matchCriteriaId":"02ABF12A-78BD-459D-BF53-065A56C385AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex10:*:*:*:*:*:*:*","matchCriteriaId":"1D15A929-0C2B-4C3D-99E4-0E7D46217216"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex11:*:*:*:*:*:*:*","matchCriteriaId":"7D00EB0E-92D3-4C5B-B107-730B47BD6E01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex12:*:*:*:*:*:*:*","matchCriteriaId":"CF7F6A52-9AA9-4441-A137-7EE3470C155C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ex13:*:*:*:*:*:*:*","matchCriteriaId":"92CEEA13-0B40-4203-8BAE-09374C9B1FE5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ey:*:*:*:*:*:*:*","matchCriteriaId":"A8AC1EA3-AD9C-4AE1-91B6-4EBD22B77D47"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ey1:*:*:*:*:*:*:*","matchCriteriaId":"F6CA27BF-13BC-4C13-A049-FA50247ACE9D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ey2:*:*:*:*:*:*:*","matchCriteriaId":"82C8B101-CB42-43CF-98CE-44EE5FBC9BF2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ey3:*:*:*:*:*:*:*","matchCriteriaId":"054583DC-AAF8-4BF0-AC13-5A488476C161"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)ez:*:*:*:*:*:*:*","matchCriteriaId":"8422A740-0029-4C05-A7FE-12F12CD73B0E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)mr:*:*:*:*:*:*:*","matchCriteriaId":"AA091446-13F4-4D87-9E0C-2C3847056C48"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se:*:*:*:*:*:*:*","matchCriteriaId":"85A9B13E-8CF7-4879-8C33-8E690291335F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se1:*:*:*:*:*:*:*","matchCriteriaId":"0A634C47-2FD6-4106-86B6-DD465A5394E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se2:*:*:*:*:*:*:*","matchCriteriaId":"05DDA3F8-7207-4FC9-B491-F49418975D5A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se3:*:*:*:*:*:*:*","matchCriteriaId":"91E64DDB-BF0A-4CCF-A01A-B45A9D566C0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se4:*:*:*:*:*:*:*","matchCriteriaId":"1E28EAD6-BD32-4DD7-9558-6E7F5264DCA9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se5:*:*:*:*:*:*:*","matchCriteriaId":"D09AEBD6-56E7-4D22-B300-C904464FE75F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se6:*:*:*:*:*:*:*","matchCriteriaId":"8AD98F15-F847-4968-8A9E-D4D5D2ED4FE0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se7:*:*:*:*:*:*:*","matchCriteriaId":"97525468-9E3E-4E34-8319-B4DFB51BC4D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se8:*:*:*:*:*:*:*","matchCriteriaId":"611A649F-161B-4683-98D5-4C8150838039"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se9:*:*:*:*:*:*:*","matchCriteriaId":"F414ABC6-B95C-48ED-BC15-817356248776"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se10:*:*:*:*:*:*:*","matchCriteriaId":"137D26AB-CA68-4CBC-91E8-8C0901D5BF19"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se10a:*:*:*:*:*:*:*","matchCriteriaId":"343F5C35-A0C0-4747-95BA-D4044C64508B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se11:*:*:*:*:*:*:*","matchCriteriaId":"713C55A8-F24D-45FE-88AA-1D1EFEC88339"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se12:*:*:*:*:*:*:*","matchCriteriaId":"11F7D280-D099-495F-B860-D96F485BAF81"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se13:*:*:*:*:*:*:*","matchCriteriaId":"B62A7038-EBCF-4996-8795-3BF95CBDE6B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se13a:*:*:*:*:*:*:*","matchCriteriaId":"E212B3A0-5A20-40B7-BBF6-CC420B0C86AE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2\\)se13b:*:*:*:*:*:*:*","matchCriteriaId":"25009DCE-B868-4977-B392-2EC2724E3B53"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2a\\)ex5:*:*:*:*:*:*:*","matchCriteriaId":"7CD47CBD-A833-4CD0-A62C-22FBB7A4244D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0\\(2a\\)se9:*:*:*:*:*:*:*","matchCriteriaId":"3BC9108D-B313-4C07-A9E3-5C2591304919"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ea:*:*:*:*:*:*:*","matchCriteriaId":"A21F0A03-C571-4C10-9A89-90BAECE453FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ej:*:*:*:*:*:*:*","matchCriteriaId":"633349DC-BFAC-4846-84F4-C65F187BE02B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ek:*:*:*:*:*:*:*","matchCriteriaId":"C3634C9A-3CFE-4D6B-94DE-79587F513B06"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ex:*:*:*:*:*:*:*","matchCriteriaId":"526392B9-AD59-4157-9731-B52DF195DB19"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ey:*:*:*:*:*:*:*","matchCriteriaId":"98A8C270-BB7E-47A7-AEF2-6C7CBC1EEB62"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0ez:*:*:*:*:*:*:*","matchCriteriaId":"8E06DEA2-D309-4743-B00F-EA154C282A64"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0m:*:*:*:*:*:*:*","matchCriteriaId":"3D03374C-7EF0-4455-839E-09CA4F2E85BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0mr:*:*:*:*:*:*:*","matchCriteriaId":"8199BA12-E3A6-447E-A5D0-AC69BB7D2441"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0s:*:*:*:*:*:*:*","matchCriteriaId":"F3EB72C9-C9AA-4E5C-8E87-A1AAA09AC5D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0se:*:*:*:*:*:*:*","matchCriteriaId":"C2E69A3B-4ECC-44D8-8E95-E29C361168F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.0xa:*:*:*:*:*:*:*","matchCriteriaId":"EC6EF56C-032C-43F6-A979-E18BEA0E16A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"C90EADDB-435F-4965-8064-E3D102139053"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"4D255E7E-037D-4926-8791-55B962AAA1E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"7F79E255-6198-4251-92C8-90A797F65DF2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sg:*:*:*:*:*:*:*","matchCriteriaId":"B8A89C06-8384-4B23-8D3A-293C9035FC73"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sg1:*:*:*:*:*:*:*","matchCriteriaId":"94836415-1A1D-4DC2-BDAF-BE5B06EA5C18"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sg2:*:*:*:*:*:*:*","matchCriteriaId":"00B7F513-E991-47A4-A96B-2EB90B15D197"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"5AD483E0-66F9-4DD1-85FA-C125C9617E10"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"35C1075B-11F3-453C-957D-834C5D6D8CB1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"115E901C-94B4-4EC7-AA85-03A20CFA90DF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"C97051EE-8C42-4546-8EDC-FAD60B3EE1EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy4:*:*:*:*:*:*:*","matchCriteriaId":"FB435D9A-FA6C-4CBD-8647-3A61B3DAB338"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy5:*:*:*:*:*:*:*","matchCriteriaId":"14181F4B-9A5C-40B4-BD15-FED694E9AE8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)sy6:*:*:*:*:*:*:*","matchCriteriaId":"B62E402E-5D8B-4261-906C-C5668B4A12BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t:*:*:*:*:*:*:*","matchCriteriaId":"85017D3F-5CEF-48BA-847E-7DCB39AC7636"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"2D4DD419-4BA3-4E3F-935C-2A6C9C71BD5C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"277D20C6-DAD1-455F-91E8-E5E091C1E7D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"2B33D730-0E80-46AF-8B53-FCEFF457EBAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"BF2D383F-F5A1-4BF6-9334-356E3CEEE897"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)t5:*:*:*:*:*:*:*","matchCriteriaId":"E3AE0230-D1A0-4A9E-A0A3-037C7977D450"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)xb:*:*:*:*:*:*:*","matchCriteriaId":"F7ACB559-F6D1-49B9-A76F-7DCAC88F802B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)xb1:*:*:*:*:*:*:*","matchCriteriaId":"2D30CD49-F004-4830-A33E-9FC6E423CEA4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)xb2:*:*:*:*:*:*:*","matchCriteriaId":"4B1D4AE4-2BD5-436B-8B2D-938583C6FB7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(1\\)xb3:*:*:*:*:*:*:*","matchCriteriaId":"9ACE89FF-55C3-4B0A-83C8-F7DEFC1691F5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"3CF70487-4E51-4570-927B-1B74D73E9D58"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)gc1:*:*:*:*:*:*:*","matchCriteriaId":"242A4DC2-C9C7-4ACB-99F0-317959B0CA2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)gc2:*:*:*:*:*:*:*","matchCriteriaId":"ED4ECF5C-1B91-4B54-BAB4-2DF17A1BBF56"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"241590D8-0230-4504-BD8D-815C8BC1F0E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"4FF1AB59-AC63-49AC-9A5B-8D8987A9E3F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"1BB7A4D4-ADF6-4845-8B5E-A432BF52F0D7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg:*:*:*:*:*:*:*","matchCriteriaId":"F4E5F22B-2CD3-4A14-AB2B-E039CF001140"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg1:*:*:*:*:*:*:*","matchCriteriaId":"15102BA5-E96F-468C-8F8E-4F8F9E947533"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg2:*:*:*:*:*:*:*","matchCriteriaId":"F1F481FC-D16B-461C-BCBB-D58B58D1647D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg3:*:*:*:*:*:*:*","matchCriteriaId":"42D47483-F300-4224-86B2-6FBEFA35EE63"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg4:*:*:*:*:*:*:*","matchCriteriaId":"AC9E74C5-4BF5-4F29-938F-3E71784F08AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg5:*:*:*:*:*:*:*","matchCriteriaId":"2963A4BD-1414-40CA-A949-9CE61B3C61C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg6:*:*:*:*:*:*:*","matchCriteriaId":"DE0C7B38-F1D2-4D6F-A986-BDE58F6B7E40"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg7:*:*:*:*:*:*:*","matchCriteriaId":"2A6C5B60-9524-4A5A-A8CA-3C18730E18F4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sg8:*:*:*:*:*:*:*","matchCriteriaId":"E0B09C15-62E9-4278-806C-03D47B75E336"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"07DCF559-9324-4CE1-A986-EF4A174DCEFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"38CC9728-4E4A-4536-BC81-031AFE1A74E9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"F9DECC49-1DF8-4925-9232-04DA748428B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"B736A1E0-89F4-418C-BC12-7E6A7AC7891F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy4:*:*:*:*:*:*:*","matchCriteriaId":"2BDC0B5A-E59C-454E-AA0E-6EB9C8888480"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy4a:*:*:*:*:*:*:*","matchCriteriaId":"2363876E-0E3B-44BA-8157-FA96554302B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy5:*:*:*:*:*:*:*","matchCriteriaId":"D2D3131A-74F7-4465-826E-5F6C90240C4D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy6:*:*:*:*:*:*:*","matchCriteriaId":"2E0D1E17-9A5C-4B74-B780-F31364FD9F06"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy7:*:*:*:*:*:*:*","matchCriteriaId":"F70ADF53-D937-4CB1-8D17-8B4DB9A5458C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy8:*:*:*:*:*:*:*","matchCriteriaId":"8B0F30A4-C088-4ECC-ABE0-33D4A7BC8D1E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy9:*:*:*:*:*:*:*","matchCriteriaId":"73B11B78-1936-42CA-919E-BCD1E0C2A397"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy10:*:*:*:*:*:*:*","matchCriteriaId":"A807560F-7111-40AB-BCC8-F3D7A2F92D2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy11:*:*:*:*:*:*:*","matchCriteriaId":"AEE56D89-5894-49E9-BDCF-E23AE4159989"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy12:*:*:*:*:*:*:*","matchCriteriaId":"EC9347AF-7729-44BD-8E33-610D573C560F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy13:*:*:*:*:*:*:*","matchCriteriaId":"14DC014A-2CDD-4294-8AEB-9C0B437C1633"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy14:*:*:*:*:*:*:*","matchCriteriaId":"B9AB472D-2158-44DC-A627-8C4D52F476A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy15:*:*:*:*:*:*:*","matchCriteriaId":"ACE1712A-1A44-4BD1-B114-318D4EC4977A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)sy16:*:*:*:*:*:*:*","matchCriteriaId":"AC27EED6-7F43-422F-8E61-CDD4E9EDC719"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t:*:*:*:*:*:*:*","matchCriteriaId":"5D14775C-95F5-4507-9837-CA818489CF4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t0a:*:*:*:*:*:*:*","matchCriteriaId":"A9895119-8DE1-4D27-A5B6-5FFA46A9B8C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"43CDBE37-FFAF-4EB1-834B-6972D16FA222"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"FFC3E04D-52F8-4C36-9B6C-086FD3BFFD2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t2a:*:*:*:*:*:*:*","matchCriteriaId":"B6FE3400-AF89-4A5F-AFF5-3521B1CC1AA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"014EEE0B-4158-49F1-B2B1-692FF481991F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"5A3D239A-CB65-46BA-8048-73439B8DA3E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(2\\)t5:*:*:*:*:*:*:*","matchCriteriaId":"E2A3D04B-CA03-4CAF-8AE6-44B89DDAA104"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)mra:*:*:*:*:*:*:*","matchCriteriaId":"A476A597-31B0-4793-A7DA-174F453691D5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)mra1:*:*:*:*:*:*:*","matchCriteriaId":"A48DC394-BBFC-441B-A50C-126AAC0698CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)mra2:*:*:*:*:*:*:*","matchCriteriaId":"944D5FAB-0DE1-4B77-906F-BBD661C316F2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)mra3:*:*:*:*:*:*:*","matchCriteriaId":"C71593C6-B365-47D2-958D-A99FFB64101A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)mra4:*:*:*:*:*:*:*","matchCriteriaId":"921D7302-58F2-4033-B3AF-1214F0CE7E4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s:*:*:*:*:*:*:*","matchCriteriaId":"A744D47A-1D42-4A98-8120-F1DFC5FD60C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s0a:*:*:*:*:*:*:*","matchCriteriaId":"80003271-E86E-48B3-9D06-1484414116C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"A2B70AC2-A5D6-48C2-AA0E-6B2C9B526264"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"0ABF43C0-7BAC-4EF6-9772-B5E59656C758"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"8EE3AD11-6E9B-43B2-96E0-14D80F4AF25F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"ADA33681-4F59-4F5C-ADEB-7AD7776427D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"83F0C310-0851-4E83-B893-FD4FF1DE2E66"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s5a:*:*:*:*:*:*:*","matchCriteriaId":"606E2317-C625-4CDF-BF03-BCA49E7659B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"6D2A3707-FF8D-4A5B-B0C5-5609ECD229F1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)s7:*:*:*:*:*:*:*","matchCriteriaId":"2BF7A525-8B01-4FF3-96A9-41C9620B2F4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svb1:*:*:*:*:*:*:*","matchCriteriaId":"236945F9-7939-41FA-AC58-7C1A7B9ECADB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svb2:*:*:*:*:*:*:*","matchCriteriaId":"534521D7-A868-4910-AB0F-A1FEAB9F9F6E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svd:*:*:*:*:*:*:*","matchCriteriaId":"982B65F8-F39E-408D-8AAF-7B571B9E3273"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svd1:*:*:*:*:*:*:*","matchCriteriaId":"FA539082-8C02-4010-8C83-B75F96539253"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svd2:*:*:*:*:*:*:*","matchCriteriaId":"9691730D-2319-40EC-AD31-DDADA8FBBDC2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svd3:*:*:*:*:*:*:*","matchCriteriaId":"9BF5A892-BCE8-45BA-A74C-1EA5B66FF456"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)sve:*:*:*:*:*:*:*","matchCriteriaId":"F8189A0E-4521-472D-910C-1675187C9998"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf:*:*:*:*:*:*:*","matchCriteriaId":"C6B660F2-9644-4525-9363-01AAAE75E03A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf1:*:*:*:*:*:*:*","matchCriteriaId":"FD3D154B-5DF4-45CC-B557-A2125E8979BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf2:*:*:*:*:*:*:*","matchCriteriaId":"BDE48F94-4D34-482A-A8D6-29D8880B69BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf2a:*:*:*:*:*:*:*","matchCriteriaId":"23F7B745-C505-451C-A7E0-817BD39B871B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4b:*:*:*:*:*:*:*","matchCriteriaId":"18050862-3337-454D-8DD9-9EA445AFAAEC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4c:*:*:*:*:*:*:*","matchCriteriaId":"E02B8774-E8F9-40E2-873E-0479844A7C62"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4d:*:*:*:*:*:*:*","matchCriteriaId":"9187F010-88F0-4425-8E83-F6361634A921"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4e:*:*:*:*:*:*:*","matchCriteriaId":"961E7A3A-D0E6-40B4-9944-1B3DA50E03AF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svf4f:*:*:*:*:*:*:*","matchCriteriaId":"2384FB6C-6D49-418B-9DAF-F4B8E0AE3D7C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg:*:*:*:*:*:*:*","matchCriteriaId":"A87F13E5-D1FA-4DB2-B68F-E036C23FF34F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg1a:*:*:*:*:*:*:*","matchCriteriaId":"AD8F6CA4-4E00-49EA-A393-8045CF4D1DCA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg1b:*:*:*:*:*:*:*","matchCriteriaId":"167AA43F-CC86-418E-A31A-C63B08A64625"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg1c:*:*:*:*:*:*:*","matchCriteriaId":"941A0E2B-597F-4AC5-A4E7-884045A92299"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg2:*:*:*:*:*:*:*","matchCriteriaId":"DBAFC149-6C77-4153-A7FC-17E33203AA29"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg2a:*:*:*:*:*:*:*","matchCriteriaId":"18CF5C46-BC6B-4CC2-9D57-8871B7C12949"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg3:*:*:*:*:*:*:*","matchCriteriaId":"336A87CD-42E3-4794-A70D-6ABE37195312"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg3a:*:*:*:*:*:*:*","matchCriteriaId":"CB050749-4DD5-418C-8556-78FC7AA24782"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg3b:*:*:*:*:*:*:*","matchCriteriaId":"1493F02C-4922-43D4-A711-435F0B9DD730"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svg3c:*:*:*:*:*:*:*","matchCriteriaId":"35ADE0EB-040E-4B03-B2E4-2FE0A769C3C6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svh:*:*:*:*:*:*:*","matchCriteriaId":"BB27F5D8-A65F-460D-A178-39EC99AB9327"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svh2:*:*:*:*:*:*:*","matchCriteriaId":"80B60DA1-55E8-47F7-8015-CCA2404CF33A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svh4:*:*:*:*:*:*:*","matchCriteriaId":"5F541F08-6D48-4C71-9E53-2B6CBC59EB31"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svh4a:*:*:*:*:*:*:*","matchCriteriaId":"77738216-2B4C-46E5-866D-99FF742E8774"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi1a:*:*:*:*:*:*:*","matchCriteriaId":"4B570EF0-038B-41A9-B0A3-AFC7AC8C70F3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi2:*:*:*:*:*:*:*","matchCriteriaId":"DF102B37-50A5-468E-BEAD-28BD15336F62"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi2a:*:*:*:*:*:*:*","matchCriteriaId":"3A9BAC64-8D88-44FC-B087-EF047B62EC01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi3:*:*:*:*:*:*:*","matchCriteriaId":"D327BC8F-461F-4185-A5B4-B8723518E2B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi3b:*:*:*:*:*:*:*","matchCriteriaId":"0745102D-0514-4293-8F3C-1934AE840B62"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi3c:*:*:*:*:*:*:*","matchCriteriaId":"C8526418-B0B1-4AD8-8DFD-EF5864E882BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi31a:*:*:*:*:*:*:*","matchCriteriaId":"0A827951-6C0A-4EA1-B952-DC69A503CD53"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svi31b:*:*:*:*:*:*:*","matchCriteriaId":"63545B0B-55C7-4210-8A10-6E76EAEB2B5F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svj:*:*:*:*:*:*:*","matchCriteriaId":"F75A91FC-D98D-4372-85CC-9C3A53AB9DEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svj2:*:*:*:*:*:*:*","matchCriteriaId":"DABF43E8-71EE-496F-8850-C817E89B9D89"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svr1:*:*:*:*:*:*:*","matchCriteriaId":"806D2FF1-EADA-44C8-94BD-6BC18D138150"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svr2:*:*:*:*:*:*:*","matchCriteriaId":"643D7544-34DA-46D9-831F-421ED00F3579"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svr3:*:*:*:*:*:*:*","matchCriteriaId":"F6354447-07DF-4913-82D9-BF249663499F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svr10:*:*:*:*:*:*:*","matchCriteriaId":"FD4F81E0-F5DA-4217-B7B7-55206BBCCFCC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svs:*:*:*:*:*:*:*","matchCriteriaId":"46EC35AA-4BD3-4FBB-878D-3313D37D9AAB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svs1:*:*:*:*:*:*:*","matchCriteriaId":"5DAC36DC-F4C5-4C4C-9C27-20FD45AA4A85"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svt1:*:*:*:*:*:*:*","matchCriteriaId":"66BD52DF-E396-415D-B46E-A8814579A01F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svt2:*:*:*:*:*:*:*","matchCriteriaId":"72A7CF9A-E1A7-4C1B-9015-5BC577805D9C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svt3:*:*:*:*:*:*:*","matchCriteriaId":"B8C17AB3-4EFC-478D-A447-43F444B4CDF6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svt4:*:*:*:*:*:*:*","matchCriteriaId":"E3F4592D-EDD1-4F06-88C6-35EA5EB56CC8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu1:*:*:*:*:*:*:*","matchCriteriaId":"6C9711B4-23FF-4C41-86F5-94D5E941453B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu2:*:*:*:*:*:*:*","matchCriteriaId":"2710C44B-A353-4BCF-85E8-525AAF839A98"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu10:*:*:*:*:*:*:*","matchCriteriaId":"CE460A37-D782-4DB2-9F18-44D16C45618A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu11:*:*:*:*:*:*:*","matchCriteriaId":"2BAEC313-FD2C-4E06-A67A-11E94F1771A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu20:*:*:*:*:*:*:*","matchCriteriaId":"378CBC90-21DF-4F68-87A0-F0DCA3731157"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svu21:*:*:*:*:*:*:*","matchCriteriaId":"E803BF09-5AE0-4C67-98C3-0554800D7555"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svv1:*:*:*:*:*:*:*","matchCriteriaId":"F2A5EA4A-A127-4363-90F7-B21E9A086C0D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svv2:*:*:*:*:*:*:*","matchCriteriaId":"456F57B2-F92F-49D6-8234-827E1C6BC9D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svv3:*:*:*:*:*:*:*","matchCriteriaId":"5C4B5D67-016E-4265-B98C-022280223B83"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svv4:*:*:*:*:*:*:*","matchCriteriaId":"31F7AC43-59BC-4AC5-AD5E-985E84CFF1D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svw:*:*:*:*:*:*:*","matchCriteriaId":"DD49B553-678A-40D4-B258-E36CDBFCBF45"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svw1:*:*:*:*:*:*:*","matchCriteriaId":"082DEBC4-2748-49E8-9BFE-7BC51133C4EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svx:*:*:*:*:*:*:*","matchCriteriaId":"886C03B2-862E-4CD6-8086-FB924FB40A56"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)svx1:*:*:*:*:*:*:*","matchCriteriaId":"D696852C-2208-43B7-9C4C-A1AE8AE995FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)t:*:*:*:*:*:*:*","matchCriteriaId":"855B1020-7FB6-46D1-ABAF-5618590CF329"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"6DDD05CF-2C4D-484D-AEB0-C5C28F432A7F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"485923CB-D5BD-400D-8324-3FA94D11C4C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"A99DA1B7-18E9-43CF-BD77-050B971D75FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(3\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"75634752-042C-4E27-972E-E0D5DCD38BE0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"1CD00484-39D2-4CD5-ABEA-3C5AD9977BB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)gc1:*:*:*:*:*:*:*","matchCriteriaId":"5AAD9B95-0D54-49CA-824D-68175D6B4A8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)gc2:*:*:*:*:*:*:*","matchCriteriaId":"B082C941-CE02-440F-8DD7-87873504B964"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m:*:*:*:*:*:*:*","matchCriteriaId":"8DEBAA67-9C88-48CE-88F7-4B5463B87B68"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"ED15DD8B-DDA9-44D6-9500-521286C73FA9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m0b:*:*:*:*:*:*:*","matchCriteriaId":"478AB85E-55C2-4C0E-97F7-2BB4FCEEBFA4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"2B71E784-53C0-46AE-AB6E-9B4CB5FAFFFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"6777AC09-8BA9-4595-89C2-1EAD0310B78B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"C4334D40-9B30-483E-9154-E0956D8849A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m3a:*:*:*:*:*:*:*","matchCriteriaId":"F14897FA-0E55-425C-9048-5987A0A6CE17"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"E2C4BCB9-8FE1-4B69-8245-F0F2955CAA30"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"112C4EA9-2FB4-4C2F-B550-036FCC289DFC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"B770E747-517E-42FE-9197-8E654F294B3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"B59D6811-BF02-436B-808A-DF21682561CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"7BE752C6-250E-47CE-93EA-536958874386"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"71B3103F-9381-40A5-A7BD-D1251B3EA5A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"B990E413-C863-4613-803F-1E492982C70C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)m12a:*:*:*:*:*:*:*","matchCriteriaId":"A49686A5-B498-4142-8632-05E979B6D3BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb4:*:*:*:*:*:*:*","matchCriteriaId":"1D6836A1-5F15-44E2-AA5E-4CD0DDDB9692"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb5:*:*:*:*:*:*:*","matchCriteriaId":"B59E042B-9A4B-4959-9B6A-FBDF431EB3E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb5a:*:*:*:*:*:*:*","matchCriteriaId":"1FBB1846-D09A-4F66-AD7F-45A2236D8839"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb6:*:*:*:*:*:*:*","matchCriteriaId":"75A272B8-DC6C-4D40-9C21-FFBC6BDFE836"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb7:*:*:*:*:*:*:*","matchCriteriaId":"064E2B27-4067-49EF-A95A-8BC49E05662E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb8:*:*:*:*:*:*:*","matchCriteriaId":"4035C938-2BAB-43C1-8302-8F22D4D3D0DF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1\\(4\\)xb8a:*:*:*:*:*:*:*","matchCriteriaId":"0CC3BEF0-8E19-4464-92B5-2C6521AE126C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*","matchCriteriaId":"B8665036-2C40-498A-B022-F6DA288D1581"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*","matchCriteriaId":"0F2359A4-8494-4BBA-85E5-C4E66D9362CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1mra:*:*:*:*:*:*:*","matchCriteriaId":"99FD7D72-18BC-4976-8B82-6451ACEDF33E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1s:*:*:*:*:*:*:*","matchCriteriaId":"8A9B1D5E-02CA-4949-8ACB-9B40642816B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1sg:*:*:*:*:*:*:*","matchCriteriaId":"37BD18D1-D526-478D-9F2C-8C9FEB3C32D8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svb:*:*:*:*:*:*:*","matchCriteriaId":"05316F1D-132B-4F09-8BA8-59CBD1ED3A97"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svd:*:*:*:*:*:*:*","matchCriteriaId":"F87AFB6F-5098-41D0-BE67-FF28E94B23A1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1sve:*:*:*:*:*:*:*","matchCriteriaId":"7915DD2D-6A7E-462A-84EB-A596A7710EF2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svf:*:*:*:*:*:*:*","matchCriteriaId":"5729A879-C5DB-401E-9E57-D1147F8075FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svg:*:*:*:*:*:*:*","matchCriteriaId":"D7888214-064B-472D-A342-FAB51AF9DDA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svh:*:*:*:*:*:*:*","matchCriteriaId":"9E7FEC98-34C4-480E-B444-8929DA04C73E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svi:*:*:*:*:*:*:*","matchCriteriaId":"75B0FB4F-F074-4D2B-8E6B-C7E6D1EB54A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svj:*:*:*:*:*:*:*","matchCriteriaId":"6E90FD83-4E30-4FB8-8706-DDF1CC0ED981"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svr:*:*:*:*:*:*:*","matchCriteriaId":"4081C783-0A26-40E5-8F7B-9CA964883A87"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svs:*:*:*:*:*:*:*","matchCriteriaId":"DC3D7F71-A794-44DB-A8E3-1A87E951EBB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svt:*:*:*:*:*:*:*","matchCriteriaId":"B842937C-BEF4-432A-8016-6AA64CCAB127"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svu:*:*:*:*:*:*:*","matchCriteriaId":"E4975BF7-75C6-4DBE-BB45-4BBE9D20DA3C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svv:*:*:*:*:*:*:*","matchCriteriaId":"7692422D-7BE5-41DD-915D-2C499C1FF056"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svw:*:*:*:*:*:*:*","matchCriteriaId":"582AEEC5-27D0-43CC-BB4F-9AED082C6C98"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1svx:*:*:*:*:*:*:*","matchCriteriaId":"3C36D96E-BFFB-40BB-9ACC-91FE1329BE65"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1sy:*:*:*:*:*:*:*","matchCriteriaId":"2FE172C2-6D8B-4DE1-8826-E28D6D098341"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1t:*:*:*:*:*:*:*","matchCriteriaId":"5FAFA073-B16F-475F-B68D-8FE9135AB0A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*","matchCriteriaId":"34137E45-7EC0-4350-9F6D-B427CE07D693"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)e:*:*:*:*:*:*:*","matchCriteriaId":"07B725B7-AFBB-4F0D-87BA-38477E250374"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"0F05531B-A6A2-437A-B7CE-1A2DD33EC8DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"7CBD931B-9D7F-452A-A567-60ED7EA1D2B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"9E4B3624-1DA1-4A63-B2F1-F8E06CB61E82"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)ey:*:*:*:*:*:*:*","matchCriteriaId":"2D601E90-6F2A-4C66-97A2-152031C88DB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"98EB6A3F-DDAB-4FC6-A857-6E106E815505"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)gc1:*:*:*:*:*:*:*","matchCriteriaId":"7741D6E0-2507-44D9-8476-AE11DADEC611"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)gc2:*:*:*:*:*:*:*","matchCriteriaId":"0318BB57-8001-4F2A-954C-AD8DB2A94356"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"4BF56A5C-3370-4F64-9F2D-F003B8536CE2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"78159F0B-2553-41F7-9ABA-38065EB5B23E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"46DC8876-9FC4-451A-996F-71F2B1C35781"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sc1a:*:*:*:*:*:*:*","matchCriteriaId":"950F3A49-F023-4949-92DE-282C5CBA9697"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd1:*:*:*:*:*:*:*","matchCriteriaId":"B4671E83-CDCC-463F-B591-7C0D306DA8A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd2:*:*:*:*:*:*:*","matchCriteriaId":"AA356699-0F2D-4D69-8206-84C876F63039"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd3:*:*:*:*:*:*:*","matchCriteriaId":"67130499-C7E3-47AA-93B3-D773990CC38F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd4:*:*:*:*:*:*:*","matchCriteriaId":"23F8027D-7357-4C01-A967-5528F175C9C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd6:*:*:*:*:*:*:*","matchCriteriaId":"068D58E6-B550-46D8-AC25-808B11E3836D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd6a:*:*:*:*:*:*:*","matchCriteriaId":"7074F027-14FF-4C59-A56B-11226F75B1B8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd7:*:*:*:*:*:*:*","matchCriteriaId":"DEA9ACF7-69A9-4506-BF11-C10A2353DFA2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sd8:*:*:*:*:*:*:*","matchCriteriaId":"B97AEA02-55FF-4619-8918-02432886C224"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"1AE57C85-794E-405B-841F-A806D32C08EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy0a:*:*:*:*:*:*:*","matchCriteriaId":"7B91687C-A8F8-45FB-BF03-8534E9230AB1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"E082DB05-253F-4C6F-BD0A-524699309D10"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy1a:*:*:*:*:*:*:*","matchCriteriaId":"B43D4858-AE1C-4372-97F9-5983EEE6ED4B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"9678A6F2-0624-4A8A-9991-9DADCDDB2687"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"D9F6D655-D3A3-4BEE-9DEF-19ADD41D1663"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy4:*:*:*:*:*:*:*","matchCriteriaId":"8AC0B809-72AD-413F-BE84-73FE2DB33950"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy5:*:*:*:*:*:*:*","matchCriteriaId":"5F2834B6-AA9D-4FDC-A228-CED66C799849"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy6:*:*:*:*:*:*:*","matchCriteriaId":"B3426024-7199-4B7B-90CB-CE83FD2E0878"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy7:*:*:*:*:*:*:*","matchCriteriaId":"BF163F6F-1A6D-4AA9-AAC2-52249BB28421"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(1\\)sy8:*:*:*:*:*:*:*","matchCriteriaId":"CD250CC8-B26A-424E-A737-97F2A7E7C4CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e:*:*:*:*:*:*:*","matchCriteriaId":"D3A156FE-590E-49DB-819D-4103D629829D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"C1F6C767-042C-4277-90F4-F81D9AFFF227"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"D33DB919-4F82-43C6-830A-A9D4FC043B42"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"72782F95-948D-489B-A19A-9DAB825DFE4B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e4:*:*:*:*:*:*:*","matchCriteriaId":"4F904CD0-8609-47F7-988C-613DE26BDBB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e5:*:*:*:*:*:*:*","matchCriteriaId":"AC3A39FE-69F6-4BB9-A9CE-D516A3802538"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e5a:*:*:*:*:*:*:*","matchCriteriaId":"AB9B7058-3467-4CCE-B9A4-71CF8143FEC8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e5b:*:*:*:*:*:*:*","matchCriteriaId":"90447919-CC40-4CA5-A488-2FCF0F25ABE1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e6:*:*:*:*:*:*:*","matchCriteriaId":"DEF74559-F418-48EA-9CA7-A9574CAFC97E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e7:*:*:*:*:*:*:*","matchCriteriaId":"A5A1ADB8-DF62-4CB6-8075-2F0956BB0126"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e8:*:*:*:*:*:*:*","matchCriteriaId":"EB0F2B2A-F273-4166-826F-88B54A480BB9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e9:*:*:*:*:*:*:*","matchCriteriaId":"194D54FC-F399-4C86-AE04-FB3FD828DDA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e9a:*:*:*:*:*:*:*","matchCriteriaId":"F98E150B-C806-4CF6-83EC-0C16A44F3EFB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e10:*:*:*:*:*:*:*","matchCriteriaId":"D1C85E0E-A920-4501-AC23-0F7534CF88EC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e10a:*:*:*:*:*:*:*","matchCriteriaId":"D1D298AF-05E5-4A03-8252-79E5A45F93EC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)e10b:*:*:*:*:*:*:*","matchCriteriaId":"DB46BE27-091F-420D-B2A0-55009B60478D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)ea:*:*:*:*:*:*:*","matchCriteriaId":"50CB7858-C857-41E2-9E5D-9368EEC2825E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)ea1:*:*:*:*:*:*:*","matchCriteriaId":"10438F4B-281D-4C2F-B4C3-DC3D47B0033A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)ea2:*:*:*:*:*:*:*","matchCriteriaId":"681E360E-2287-4BE7-8228-77C235DFA901"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)ea3:*:*:*:*:*:*:*","matchCriteriaId":"81800178-449A-4B61-9611-5FB2FC4DBC75"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)eb:*:*:*:*:*:*:*","matchCriteriaId":"F7316ED4-FABD-49E0-AA21-394D327435F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)eb1:*:*:*:*:*:*:*","matchCriteriaId":"24A56EF3-4E88-4220-846A-A9BE1E496311"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)eb2:*:*:*:*:*:*:*","matchCriteriaId":"DAA77FEC-51CE-4D0B-9D1F-7BF1A28D30A9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"C89D14BC-1718-4AE9-B107-1709C2CE965E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jax:*:*:*:*:*:*:*","matchCriteriaId":"2F95DC51-220F-41F9-BC48-E010746C2D33"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb:*:*:*:*:*:*:*","matchCriteriaId":"0F81AACB-C3F9-454F-A31D-E985451B0105"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb1:*:*:*:*:*:*:*","matchCriteriaId":"E15A69BF-50B6-42BE-9F44-7A7EBA28CC6D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb2:*:*:*:*:*:*:*","matchCriteriaId":"853F31A7-E4A7-41DC-B6C6-36D5C665B7AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb3:*:*:*:*:*:*:*","matchCriteriaId":"BDC473A4-39F2-4F32-B268-B9282B0B7823"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb4:*:*:*:*:*:*:*","matchCriteriaId":"DF758B9D-7E81-4B27-865C-7CE675D38228"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb5:*:*:*:*:*:*:*","matchCriteriaId":"99F26328-57B0-4E5F-932D-EEA70DF7C8CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jb6:*:*:*:*:*:*:*","matchCriteriaId":"282A8AA5-B087-4F0E-A8B1-4EA811E40270"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)jn2:*:*:*:*:*:*:*","matchCriteriaId":"3D276149-6D16-4C8D-8D7F-BAD72D7C78BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"DC422D76-8337-41F0-98AE-E5D85DF4D0DE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s0a:*:*:*:*:*:*:*","matchCriteriaId":"ECB76F47-8723-4888-8613-AC3273BAB758"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s0c:*:*:*:*:*:*:*","matchCriteriaId":"13CC5862-F8D0-4184-A29B-AE627680D0C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s0d:*:*:*:*:*:*:*","matchCriteriaId":"FFF05167-C9CC-43C4-92FC-CCA80093CF8D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"D1CCA5C4-3683-46C9-801B-683E194DDA8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"27D4C7E2-F1F1-43BF-A53E-2A8FF408F4A1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sc:*:*:*:*:*:*:*","matchCriteriaId":"37FD6D9F-1D00-40B5-BE21-2134D851DF13"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sc1:*:*:*:*:*:*:*","matchCriteriaId":"4B29CAEE-A01B-4156-A871-43F3CC90ECB8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sc3:*:*:*:*:*:*:*","matchCriteriaId":"6879F438-0A0E-460C-A52F-3EE2F0EC2C3D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sc4:*:*:*:*:*:*:*","matchCriteriaId":"A925CDF2-3A2E-499C-B38F-1D086534F11E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"B05373F4-E820-4D22-A86A-904854F04C7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"4C38969D-65EB-4C80-BB2A-A1245C4E718B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"A429CFF2-A288-4CD5-9C06-8D18647C67E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"AB3A9655-9E22-4AEA-BBCF-6C0749D0289E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2a\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"0C846C74-7644-4DAB-A4B8-B33464EBE92E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2a\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"5DDB0B25-95E0-4796-A56F-1A59EF7EA283"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(2b\\)e:*:*:*:*:*:*:*","matchCriteriaId":"0687FD87-BAED-4776-9B94-3C9EA7CCE79A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)e:*:*:*:*:*:*:*","matchCriteriaId":"BB214EAE-AEB7-4359-AD8C-86CCC080EF96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"757000B2-A8EB-464A-9A2D-EC4D920A0569"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"102BF855-ED1C-4D26-85D9-74B2BE0E9CF4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"B42618DF-F118-41A7-96E5-24C229DA020E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)e4:*:*:*:*:*:*:*","matchCriteriaId":"26F6FC68-BF4A-4511-8B46-A93C81E349B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)ea:*:*:*:*:*:*:*","matchCriteriaId":"A9D6FBCE-F1F0-437B-A9B0-57F717C974F1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"D80852CE-8D91-4E85-A97F-C7A9AF5278CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3\\)gc1:*:*:*:*:*:*:*","matchCriteriaId":"AF777880-43BF-4D4A-9BA1-B2E925B5DE11"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3a\\)e:*:*:*:*:*:*:*","matchCriteriaId":"260E5F96-48DB-41C4-B45E-5BE0367DD7E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3m\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"BA06788C-E529-4024-9565-EAF5D90D68C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3m\\)e7:*:*:*:*:*:*:*","matchCriteriaId":"96274788-A5AC-4740-A915-C381593203C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(3m\\)e8:*:*:*:*:*:*:*","matchCriteriaId":"6FD15D65-9471-4755-9EDB-04ECF34DFD8B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e:*:*:*:*:*:*:*","matchCriteriaId":"2CE9B41B-B1B5-45A2-8DBE-775B1CE4F2C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"80114F8D-320D-41FF-ADD3-729E250A8CD4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"879C4495-3B26-4370-8708-16F5002E37CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"7A9DDD1E-201F-42B8-ADC9-9CD2F3ED2C4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e4:*:*:*:*:*:*:*","matchCriteriaId":"D8C2BB1F-79DF-4471-B75F-C22CEBB5380F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e5:*:*:*:*:*:*:*","matchCriteriaId":"6F5A55B3-49E4-4C48-B942-4816504BAA30"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e6:*:*:*:*:*:*:*","matchCriteriaId":"62AADD63-CEA3-461B-94EA-0CDAB4A2ED00"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e7:*:*:*:*:*:*:*","matchCriteriaId":"EB704746-C27B-4C6B-948C-B8C0A3F40782"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e8:*:*:*:*:*:*:*","matchCriteriaId":"F354F8F6-70D3-43EE-BF08-DFB87E83E847"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e9:*:*:*:*:*:*:*","matchCriteriaId":"62F908B0-7ECE-40F8-8549-29BD1A070606"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e10:*:*:*:*:*:*:*","matchCriteriaId":"378E67DD-779C-4852-BF29-38C2DFFB1BBB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e10a:*:*:*:*:*:*:*","matchCriteriaId":"9033ACC7-1CCC-44E7-8275-73499C0E6E87"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e10b:*:*:*:*:*:*:*","matchCriteriaId":"2436CB44-A933-4885-8BD2-E2AAEE7CC1AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)e10c:*:*:*:*:*:*:*","matchCriteriaId":"EDDCEDCA-C120-44DD-89FB-5173464D0D52"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea:*:*:*:*:*:*:*","matchCriteriaId":"BBF92BEC-AA46-46DF-8C1E-956F3E506E69"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea1:*:*:*:*:*:*:*","matchCriteriaId":"8C226FE9-61A0-4873-B277-1B8ADB397B32"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea2:*:*:*:*:*:*:*","matchCriteriaId":"2D9C3A73-E4E1-4C0F-86D4-B796069E4EE7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea3:*:*:*:*:*:*:*","matchCriteriaId":"FD5BD905-75C3-47AE-8D19-6225BD808B37"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea4:*:*:*:*:*:*:*","matchCriteriaId":"56DE452A-6852-4879-9187-8A152E6E260E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea5:*:*:*:*:*:*:*","matchCriteriaId":"9A6367C8-C9D7-4965-BD9C-1DD4A2FCE2D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea6:*:*:*:*:*:*:*","matchCriteriaId":"BD3047E4-BCC3-41A7-9DCD-15C25D14EC44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea7:*:*:*:*:*:*:*","matchCriteriaId":"7785E177-C04E-4170-9C35-B4259D14EA85"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea8:*:*:*:*:*:*:*","matchCriteriaId":"8CAE727E-E552-4222-8FF0-6146A813BDEE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9:*:*:*:*:*:*:*","matchCriteriaId":"C7850295-C728-4448-ABA7-D01397DBBE5A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9a:*:*:*:*:*:*:*","matchCriteriaId":"7C104A47-53EE-47FC-BAE5-21925BEE98E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ec1:*:*:*:*:*:*:*","matchCriteriaId":"65589A68-58A4-4BD4-8A26-C629AE610953"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)ec2:*:*:*:*:*:*:*","matchCriteriaId":"C8A64C8F-6380-47CA-8116-E3438B953F84"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)gc:*:*:*:*:*:*:*","matchCriteriaId":"E3714E18-9A21-4D04-BB5E-0299AF443E2E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)gc1:*:*:*:*:*:*:*","matchCriteriaId":"F6FE61C7-3B61-4085-AD91-137459DA29D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)gc2:*:*:*:*:*:*:*","matchCriteriaId":"71080D8B-BC81-4CDF-8626-D0F35DA40AEA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)gc3:*:*:*:*:*:*:*","matchCriteriaId":"CF10596D-457A-4DA8-8037-5E92E1D39232"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jaz:*:*:*:*:*:*:*","matchCriteriaId":"BAE38B2F-F6AB-44E2-89BE-F71796FE1942"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb:*:*:*:*:*:*:*","matchCriteriaId":"ADFCDD9D-F2C9-431E-BE9C-9A89C5501939"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb1:*:*:*:*:*:*:*","matchCriteriaId":"1783208B-3BAD-411B-AE3E-BF7F3C13BEF7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb2:*:*:*:*:*:*:*","matchCriteriaId":"E9843B15-19B6-4A35-9C9A-5B803352A46C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb3:*:*:*:*:*:*:*","matchCriteriaId":"314FAE74-75CF-4E43-ABC5-826190F49D34"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb3a:*:*:*:*:*:*:*","matchCriteriaId":"261C2203-4972-45D5-8DA0-83A9AB4D6C51"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb3b:*:*:*:*:*:*:*","matchCriteriaId":"8CB9B457-8B4B-4761-A23F-8A99F28E4CCE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb3h:*:*:*:*:*:*:*","matchCriteriaId":"2590898B-201F-44EE-91D9-E3A891C974B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb3s:*:*:*:*:*:*:*","matchCriteriaId":"F6526FB8-288D-46CB-BF02-AFF61CB13144"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb4:*:*:*:*:*:*:*","matchCriteriaId":"2BE089B8-4176-4618-8C1A-525A8CF96053"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb5:*:*:*:*:*:*:*","matchCriteriaId":"32222F6C-960D-4AF6-ABA1-6BED7FEDCFCB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb5h:*:*:*:*:*:*:*","matchCriteriaId":"DABB2A02-1CB2-4BAB-A92D-511298C9D28A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb5m:*:*:*:*:*:*:*","matchCriteriaId":"4F00FA76-674A-4463-AB30-6DB279251FFD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jb6:*:*:*:*:*:*:*","matchCriteriaId":"981C90B0-43DD-482D-9471-74E4CC5DB0BD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)jn:*:*:*:*:*:*:*","matchCriteriaId":"D6098745-F5CB-4D3B-A04D-E4C1F1382FCF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m:*:*:*:*:*:*:*","matchCriteriaId":"A37D2CBE-2B93-45CB-AB59-AFDF14277E4D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"E2911989-D074-42DF-AB58-6849B3E0B72D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"34299D29-96EC-4AAA-8137-49B292FC2D67"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"5092DFCF-FEE9-4BE3-9116-01F3CBCE8A42"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"7BCBDFC3-13C3-45D3-80C9-E533082FAF4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"B213D7CC-AD3D-4241-AF59-5B4CFC9BA930"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"6E88FA32-5EBE-44BA-979B-60FE8340E8C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m6a:*:*:*:*:*:*:*","matchCriteriaId":"C4CE0E6F-A277-48BE-8F1D-BCA48C57666C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m6b:*:*:*:*:*:*:*","matchCriteriaId":"FE991C07-531B-4566-89BE-0A90C79FDCD6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"96FDDD94-40C9-47F0-9D43-0C0267F439C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"4E77BE16-C28C-43C2-B2CC-5AC4F33F7E13"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"DF3BBE82-E29A-4FD6-A897-1D80DE6ACA4F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"0322D5E9-FE05-49EF-A210-A276D69B9F16"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)m11:*:*:*:*:*:*:*","matchCriteriaId":"F188F2EB-60D2-47BB-8FA8-2F832289345E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s:*:*:*:*:*:*:*","matchCriteriaId":"AA1DE401-4E0B-4F72-B59D-1A600624D43E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s0c:*:*:*:*:*:*:*","matchCriteriaId":"704ED4C8-DA95-43A8-9DCC-56E74E7DC42D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"D59B7F84-4C39-46E1-932C-EE52F22F4C6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s1c:*:*:*:*:*:*:*","matchCriteriaId":"606F44FA-864C-4514-B5F1-2E78E09EFBD6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"A3A0F9C0-4591-4981-863E-1704FC4A0919"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"AEF56328-A74E-432E-A790-E16C941CA3A9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s3a:*:*:*:*:*:*:*","matchCriteriaId":"5F91421B-F04E-4CA7-8EE3-2F06AC6303C6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"C8B6E5BE-2D8B-4BAF-88BE-772F5905875E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s4a:*:*:*:*:*:*:*","matchCriteriaId":"9CFB827C-E7A9-410F-AE0D-5E31C6B29EE2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"180C12CE-E9EC-4E86-A18A-E57803232193"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"8007004F-7331-48FF-9821-866560F3580A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s7:*:*:*:*:*:*:*","matchCriteriaId":"61F877F3-C1EB-47D4-BBF2-0D678403A1D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4\\)s8:*:*:*:*:*:*:*","matchCriteriaId":"A6FAC1F8-8315-4669-8B2E-37D423AAEA55"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4m\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"F65F813B-C080-4028-8E1E-A81827917DD4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4m\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"6ABBCE48-B9D1-4EFB-BF64-CF30F5294EB2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4m\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"9D54D10E-D94E-4731-9988-4EC1786FF4E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4n\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"4DC02AA6-E046-4EC9-9FFB-8B2C76FBE027"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4o\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"4A2BB34B-D902-4064-BADC-56B5379E92CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4o\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"55D0A0A2-DB62-4C92-9877-CF8CA01B1A10"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4p\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"2316E962-6C56-4F45-9575-274506B9D4C6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4q\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"42D3DFE3-7576-4D56-ABD2-425C28B56960"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(4s\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"A39AFD5E-8FCA-4EC6-9472-FD208CB2A555"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)e:*:*:*:*:*:*:*","matchCriteriaId":"F112DE64-0042-4FB9-945D-3107468193E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"E027FB12-862F-413E-AA2B-4BBD90AE3650"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"DD28874B-148A-4299-9AA1-67A550B25F8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)e2c:*:*:*:*:*:*:*","matchCriteriaId":"E7131776-5DEB-4B96-8483-B81B538E24FA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)ea:*:*:*:*:*:*:*","matchCriteriaId":"BE991877-18E0-4374-A441-C2316085CCA6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5\\)ex:*:*:*:*:*:*:*","matchCriteriaId":"7A472B96-0DDE-49DD-A7E3-A82DD6AEB3DD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5a\\)e:*:*:*:*:*:*:*","matchCriteriaId":"3A2EB46D-16E0-4C31-8634-C33D70B5381A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5a\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"757EB1A1-4764-4108-9AB1-F33CF9CEE574"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5b\\)e:*:*:*:*:*:*:*","matchCriteriaId":"F29B2E6F-ED6C-4568-9042-7A1BD96A9E07"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(5c\\)e:*:*:*:*:*:*:*","matchCriteriaId":"7803B445-FE22-4D4B-9F3A-68EFE528195E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e:*:*:*:*:*:*:*","matchCriteriaId":"199DCF1B-8A1E-47CC-87A6-64E6F21D8886"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e0a:*:*:*:*:*:*:*","matchCriteriaId":"C5B78669-3B28-4F1D-993D-85282A7D0E96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e0c:*:*:*:*:*:*:*","matchCriteriaId":"DD05109E-1183-419D-96A1-9CD5EA5ECC3C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"D3C73A3A-4B84-476F-AC3C-81DCB527E29A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e1a:*:*:*:*:*:*:*","matchCriteriaId":"7551128E-9E23-4C42-A681-6BE64D284C93"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e1s:*:*:*:*:*:*:*","matchCriteriaId":"0EB7BFE1-06ED-4B45-8B4F-2B309B8D6342"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"5DEE2C71-C401-43D1-86DC-725FE5FDF87E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e2a:*:*:*:*:*:*:*","matchCriteriaId":"1758F264-96F9-4EE9-9CA9-AD5407885547"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e2b:*:*:*:*:*:*:*","matchCriteriaId":"FB2842F6-4CD5-457C-AC75-241A5AB9534B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"5ABE0470-E94A-4CAF-865D-73E2607A0DC1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(6\\)eb:*:*:*:*:*:*:*","matchCriteriaId":"A9CCD7E3-C62B-4151-96FF-1175D4896E95"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e:*:*:*:*:*:*:*","matchCriteriaId":"6437E689-A049-4D48-AB7A-49CA7EBDE8B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e0a:*:*:*:*:*:*:*","matchCriteriaId":"110B699D-169E-4932-A480-6EBB90CAE94B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e0b:*:*:*:*:*:*:*","matchCriteriaId":"A4C12918-E5BB-465E-9DA4-06B7351DD805"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e0s:*:*:*:*:*:*:*","matchCriteriaId":"4862C453-8BD7-4D53-B2D6-CE3E44A4915A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"D0C4E1F4-AD64-418C-A308-85501E0F3EA2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e1a:*:*:*:*:*:*:*","matchCriteriaId":"27EF41C6-A0D0-4149-BC5D-B31C4F5CC6D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"57ED9CDC-FC03-4DA7-A791-CE61D0D8364D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e2a:*:*:*:*:*:*:*","matchCriteriaId":"AB8C3BBA-4829-4006-B7EB-F552D86922C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e2b:*:*:*:*:*:*:*","matchCriteriaId":"29FE4D84-423F-4A5E-9B06-D5231BF1E03E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e3:*:*:*:*:*:*:*","matchCriteriaId":"F980EFA3-BB92-49D3-8D5F-2804BB44ABB1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e3k:*:*:*:*:*:*:*","matchCriteriaId":"3D6D0AA7-E879-4303-AB2D-4FEF3574B60E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e4:*:*:*:*:*:*:*","matchCriteriaId":"345C9300-CAC2-4427-A6B4-8DBC72573E00"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e5:*:*:*:*:*:*:*","matchCriteriaId":"64BFCF66-DE06-46DA-8F9D-60A446DC0F0A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7\\)e6:*:*:*:*:*:*:*","matchCriteriaId":"7BDF6ABA-F0A4-423F-9056-A57C6A074137"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7a\\)e0b:*:*:*:*:*:*:*","matchCriteriaId":"1374E243-4EC2-4A81-991C-B5705135CAD2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(7b\\)e0b:*:*:*:*:*:*:*","matchCriteriaId":"6ECA6101-94BA-4209-8243-A56AF02963EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(8\\)e:*:*:*:*:*:*:*","matchCriteriaId":"FFF00927-80B0-4BE3-BF7C-E663A5E7763A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(8\\)e1:*:*:*:*:*:*:*","matchCriteriaId":"9795E31D-A642-4100-A980-CD49C291AB7F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2\\(8\\)e2:*:*:*:*:*:*:*","matchCriteriaId":"83C79479-27C6-4273-BC80-70395D609197"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2e:*:*:*:*:*:*:*","matchCriteriaId":"5B098F3B-3779-409F-8D68-F9D0492AC01A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2ea:*:*:*:*:*:*:*","matchCriteriaId":"DCF4D863-5357-4B36-990C-291A2A6CD598"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2eb:*:*:*:*:*:*:*","matchCriteriaId":"764C4BB9-4D86-47F3-BDAB-7909B8BAA3D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2ec:*:*:*:*:*:*:*","matchCriteriaId":"41AA6C85-4093-4869-94D5-1AA7BB5E0CEA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2ex:*:*:*:*:*:*:*","matchCriteriaId":"C89406E7-B255-4646-8BD1-FFB8A98B01D8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2ey:*:*:*:*:*:*:*","matchCriteriaId":"3BFD1F89-F57C-415A-965A-E3BFA2342D1F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2gc:*:*:*:*:*:*:*","matchCriteriaId":"469F2192-EE6E-4257-BBE7-3AA7B7439D1E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2jax:*:*:*:*:*:*:*","matchCriteriaId":"8A6DFE9E-7BE1-424D-BB46-D58A4474A81E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2jaz:*:*:*:*:*:*:*","matchCriteriaId":"40128AC6-B558-490E-B741-88AD8BB457AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2jb:*:*:*:*:*:*:*","matchCriteriaId":"B15CBC7B-0082-45BA-80A8-B361D7808C7B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2jn:*:*:*:*:*:*:*","matchCriteriaId":"BCE7A209-F261-4DC8-8058-790F8855C2B3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2m:*:*:*:*:*:*:*","matchCriteriaId":"908465EB-BA18-4C6C-AC28-860597C4F279"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2s:*:*:*:*:*:*:*","matchCriteriaId":"3EEA2C31-0789-459D-90AF-04898E672363"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2sc:*:*:*:*:*:*:*","matchCriteriaId":"7906C110-DA1F-449A-A25D-AD9401E5145F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2sd:*:*:*:*:*:*:*","matchCriteriaId":"98F5CFD2-CA06-46A6-9383-E746DE1A1331"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.2sy:*:*:*:*:*:*:*","matchCriteriaId":"5DB0A513-A397-4B95-A596-4921BC234482"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(0\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"1724DF49-B5A4-4EA6-8733-1672455BB3BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"D682D369-AFAA-47D6-B063-95A9FE336FBE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"21FDD38A-D864-4E73-BEBE-E3545113FA2C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)s1e:*:*:*:*:*:*:*","matchCriteriaId":"527197ED-992E-453A-8E53-091249FC1195"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"46DC7974-36DA-49AF-BDA3-671EA5F41441"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"249D78EB-A125-4731-A41B-62F8302D7246"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"7E599088-5071-469B-980F-4BA3026856C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"21F58CEE-636B-460E-91D1-330965FA7FE9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)t:*:*:*:*:*:*:*","matchCriteriaId":"FCA5302F-0F9E-4E0A-AA59-CB23B9A89F32"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"F943E4AE-F0EE-4643-B34D-44896C8CBF6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"4E6ED45F-4479-445D-8970-F90413C51B7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"8922A697-63B0-480E-B91F-4C16E2F325B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(1\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"6B1EB55A-4D3A-42ED-9EA0-DF31DE62086C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"36979139-66D2-40DD-A865-547BA9D49786"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"815E129B-EB7C-4E67-A50A-38CA19B697AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"6B7E5969-E55B-4EBF-ADDE-8A969174E03D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)t:*:*:*:*:*:*:*","matchCriteriaId":"3376544F-A13B-4800-952D-08A2F429E9A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"79DA9DD7-A350-4A62-B19A-6AF90CF798F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"7113699B-762C-48BD-AD99-19D1A25995E3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"1E178E6C-D717-48B1-B79A-4E071BDFE6AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(2\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"6BF7DF14-DD6F-4D24-8F12-AAB145FBDB41"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja:*:*:*:*:*:*:*","matchCriteriaId":"C57A83D0-E043-4294-A61D-730FAE30CCEF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja1:*:*:*:*:*:*:*","matchCriteriaId":"71493AA2-49E9-4FF5-AC29-DC2426973EC6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja1m:*:*:*:*:*:*:*","matchCriteriaId":"9C1E9625-A8CF-4D0F-BB0D-9FB91391D977"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja2:*:*:*:*:*:*:*","matchCriteriaId":"CF6BB09E-D52C-4783-8D44-D9C5B82EFA74"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja3:*:*:*:*:*:*:*","matchCriteriaId":"18BA05C2-C6EC-41F0-9B85-891764194353"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja4:*:*:*:*:*:*:*","matchCriteriaId":"85F96295-2E72-4C23-B973-791B4A2B63F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja5:*:*:*:*:*:*:*","matchCriteriaId":"A8555124-BAFA-45D4-8208-ED1172D55F53"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja6:*:*:*:*:*:*:*","matchCriteriaId":"A313DD0B-C9A9-4731-A486-EE1BCBA3B1F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja7:*:*:*:*:*:*:*","matchCriteriaId":"04B9D9B5-807F-494B-9ED2-7F4BDB32432A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja8:*:*:*:*:*:*:*","matchCriteriaId":"6089D71A-8D46-4819-80E9-8A29BCA47EDE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja10:*:*:*:*:*:*:*","matchCriteriaId":"21678FDA-D2B4-4041-A52D-C7AA562FD086"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja11:*:*:*:*:*:*:*","matchCriteriaId":"F6EB0CFF-88F5-4193-8896-B3E4BA8D1AD7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ja12:*:*:*:*:*:*:*","matchCriteriaId":"4E532352-99A6-4E45-B0E7-7F04DA411820"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa:*:*:*:*:*:*:*","matchCriteriaId":"D3BD12E4-2ADA-4E3D-A12D-FF0E1031D677"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa11:*:*:*:*:*:*:*","matchCriteriaId":"9420ADDA-5DD7-4842-AC07-2F5588CA5817"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa12:*:*:*:*:*:*:*","matchCriteriaId":"493428E8-D818-4EDF-BA88-E715734BF848"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jab:*:*:*:*:*:*:*","matchCriteriaId":"915E4321-D52D-4C16-8821-ED16529C9090"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jax:*:*:*:*:*:*:*","matchCriteriaId":"1AAC643B-AA58-42EA-A777-52FCF6065F9B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jax1:*:*:*:*:*:*:*","matchCriteriaId":"9CFB57C3-6CDF-46D1-858D-D5234956653D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jax2:*:*:*:*:*:*:*","matchCriteriaId":"330125E6-3645-40B5-8E64-009B622090B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jb:*:*:*:*:*:*:*","matchCriteriaId":"02D874DF-54A1-47C7-B3D9-A9CE41A42418"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb:*:*:*:*:*:*:*","matchCriteriaId":"1485E3A5-A586-408A-8325-7572779DD0E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb1:*:*:*:*:*:*:*","matchCriteriaId":"2244E538-6B35-44E0-B93E-60B773745A99"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb2:*:*:*:*:*:*:*","matchCriteriaId":"F9DB6B2A-19D2-4684-B07F-5D42EC850A8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb4:*:*:*:*:*:*:*","matchCriteriaId":"DDC1C381-4795-4992-BE3C-9615E005DE46"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb5:*:*:*:*:*:*:*","matchCriteriaId":"80188F84-30DE-46AC-8E0C-984126B77CC6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6:*:*:*:*:*:*:*","matchCriteriaId":"DECBF0A9-D84F-40A2-AC61-A9C59C819787"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6a:*:*:*:*:*:*:*","matchCriteriaId":"C9F129CF-FB92-49E9-BD86-90DDB8218FF5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb8:*:*:*:*:*:*:*","matchCriteriaId":"9C288D58-F765-4403-BF18-CC0A62B1AA60"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc:*:*:*:*:*:*:*","matchCriteriaId":"D4CF8146-FBF4-48F9-8BF0-61ACB2B3524E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc1:*:*:*:*:*:*:*","matchCriteriaId":"27357CD7-3E9E-4EF2-A5D4-A6BC44952FD2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc2:*:*:*:*:*:*:*","matchCriteriaId":"4246ACD7-DBCF-4CE6-B9B8-D44AAB2DEC8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc3:*:*:*:*:*:*:*","matchCriteriaId":"1046E19B-DB53-418A-BFEC-5CD4492E6626"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc4:*:*:*:*:*:*:*","matchCriteriaId":"0062D992-D990-4EC9-BABD-2EFFF84254D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc5:*:*:*:*:*:*:*","matchCriteriaId":"CC81B74C-4F63-46E8-ACF4-EB707853580A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc6:*:*:*:*:*:*:*","matchCriteriaId":"A3C779C9-3B83-4B26-8942-B8475FB3B5D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc8:*:*:*:*:*:*:*","matchCriteriaId":"02ACA99D-5784-4F5F-AB83-F55DF8774E94"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc9:*:*:*:*:*:*:*","matchCriteriaId":"DFFB9F99-8751-442B-9419-C2AB522D2ADC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jc14:*:*:*:*:*:*:*","matchCriteriaId":"5E33FD88-8183-40EF-97A1-2766A4BBFBE5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jca7:*:*:*:*:*:*:*","matchCriteriaId":"A6135D11-F4C2-4B6C-BC63-1132499D64A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jca8:*:*:*:*:*:*:*","matchCriteriaId":"3B43CA9C-977B-4C99-A520-0BCDA5D2A700"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jca9:*:*:*:*:*:*:*","matchCriteriaId":"DFDCD3CA-FAA4-4BCA-883B-B871B8748C3E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd:*:*:*:*:*:*:*","matchCriteriaId":"34D7D48C-9FA1-45DB-B206-437E8ECBF53D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd2:*:*:*:*:*:*:*","matchCriteriaId":"3626B216-43E8-4E60-96E5-7CAA0CB67F65"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd3:*:*:*:*:*:*:*","matchCriteriaId":"D9B59D8B-E71A-4671-BA0B-00E56498E280"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd4:*:*:*:*:*:*:*","matchCriteriaId":"956C0089-E5AE-4289-B6D7-A8AB3C39AAA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd5:*:*:*:*:*:*:*","matchCriteriaId":"333468BC-41F0-46ED-9561-D7D2CE6AC267"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd6:*:*:*:*:*:*:*","matchCriteriaId":"09DBAA17-61D7-4EE4-A70D-A7200DF36C58"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd7:*:*:*:*:*:*:*","matchCriteriaId":"DF17EADC-5812-47FD-A243-287837CEC1E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd8:*:*:*:*:*:*:*","matchCriteriaId":"5733BCBA-B3CE-4B18-9F7B-51CE17AAEF89"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd9:*:*:*:*:*:*:*","matchCriteriaId":"BE8CF99C-B097-4964-B07C-FBB28EB37681"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd11:*:*:*:*:*:*:*","matchCriteriaId":"79DC64FF-E6F4-4FEE-87A2-14DF0DA55B23"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd12:*:*:*:*:*:*:*","matchCriteriaId":"CBA4B81F-7FCA-4666-8602-F6C77A4673E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd13:*:*:*:*:*:*:*","matchCriteriaId":"E2403659-B7AD-40CE-AF88-FE2BEF0929E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd14:*:*:*:*:*:*:*","matchCriteriaId":"7D1F53B1-E9FA-4480-8314-C531073B25CF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd16:*:*:*:*:*:*:*","matchCriteriaId":"498030A3-0AFF-4D74-98D6-74C9447E5B79"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jd17:*:*:*:*:*:*:*","matchCriteriaId":"BDCBDB71-59D7-481E-84FF-8772930F857B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda7:*:*:*:*:*:*:*","matchCriteriaId":"1C5906E4-31B7-45B6-B7D4-493B64741D52"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda8:*:*:*:*:*:*:*","matchCriteriaId":"09807F0F-E487-447B-8A79-96CB90858891"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda9:*:*:*:*:*:*:*","matchCriteriaId":"01A21ED6-B633-4B59-BD32-128D0E2B3563"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda11:*:*:*:*:*:*:*","matchCriteriaId":"CA7AF17D-2E1E-47D7-9356-4185A5F09BDD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda12:*:*:*:*:*:*:*","matchCriteriaId":"9FBF7AB3-6BA0-4ED8-9496-2CA4C28F9C8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda13:*:*:*:*:*:*:*","matchCriteriaId":"09664703-4AF6-4213-AB74-9294DE80E648"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda14:*:*:*:*:*:*:*","matchCriteriaId":"638B3FE5-39B1-47E7-B975-A2A88C68B573"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda16:*:*:*:*:*:*:*","matchCriteriaId":"04D5820C-2E74-4C66-932C-00FF3D064F09"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jda17:*:*:*:*:*:*:*","matchCriteriaId":"65F67B44-4215-48BC-A4DA-279178C4A6A9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)je:*:*:*:*:*:*:*","matchCriteriaId":"2955A319-04AC-4D0C-80B7-0C90503908C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf:*:*:*:*:*:*:*","matchCriteriaId":"B0EF13B6-A743-41D1-BB31-F17C3586C8AF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf1:*:*:*:*:*:*:*","matchCriteriaId":"0B4F7A75-1D0B-4F55-868C-99DBB67AE1AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf2:*:*:*:*:*:*:*","matchCriteriaId":"37875B18-434B-4218-BAAF-2B593E188180"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf4:*:*:*:*:*:*:*","matchCriteriaId":"26BAC234-D00C-4407-A1FE-E45A14D1BDAB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf5:*:*:*:*:*:*:*","matchCriteriaId":"C42E2869-F179-49B7-A4E8-0F4E8EA953CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf6:*:*:*:*:*:*:*","matchCriteriaId":"7A58711A-F8C9-4F25-97D7-AE8AE64F3912"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf7:*:*:*:*:*:*:*","matchCriteriaId":"BF4E7B19-75DF-4811-BEE9-28E7B15ED6F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf8:*:*:*:*:*:*:*","matchCriteriaId":"DE3ECC04-345F-4DAE-98F7-04E082BAEC3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf9:*:*:*:*:*:*:*","matchCriteriaId":"6A919122-DE62-4032-80DF-F77C1D80B387"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf10:*:*:*:*:*:*:*","matchCriteriaId":"9C5B0248-7C59-49F7-A1BC-FE6F5A8E535B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf11:*:*:*:*:*:*:*","matchCriteriaId":"68958043-1212-42AF-A205-DB731ED55114"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12:*:*:*:*:*:*:*","matchCriteriaId":"84AE6EB6-EF3F-4DE2-ABEC-71F9010BFF0C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12i:*:*:*:*:*:*:*","matchCriteriaId":"DD6F56B5-BE84-434D-AEC8-EB0764A832FA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf14:*:*:*:*:*:*:*","matchCriteriaId":"786741B1-2502-4F2F-A943-C50720A73D60"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf14i:*:*:*:*:*:*:*","matchCriteriaId":"02693A73-85AE-4AFE-81B2-11A85251CBD3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf15:*:*:*:*:*:*:*","matchCriteriaId":"83EFE0BC-2487-458C-B8AB-33600B9EB986"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jf15i:*:*:*:*:*:*:*","matchCriteriaId":"3D0D518D-5B23-4F24-9AB0-C08901613B1F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jg:*:*:*:*:*:*:*","matchCriteriaId":"746D8C22-4A3E-4EDB-96A1-923EFF2FD5C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jg1:*:*:*:*:*:*:*","matchCriteriaId":"8BB02DEB-81D4-4A05-BDD5-3B8BC7184159"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jh:*:*:*:*:*:*:*","matchCriteriaId":"B18C3383-28B0-435E-AF08-9739DADAE4E2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jh1:*:*:*:*:*:*:*","matchCriteriaId":"08C9CA39-3515-4226-8453-0B5FC62546D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ji1:*:*:*:*:*:*:*","matchCriteriaId":"19AAE85B-A2E3-4758-9DAF-B4BD7C667DA2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ji3:*:*:*:*:*:*:*","matchCriteriaId":"1658FFCF-7433-4AFB-9D59-BD6CC14A4D28"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ji4:*:*:*:*:*:*:*","matchCriteriaId":"D2CA6116-2C6B-431B-BA88-63B180A00DA0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ji5:*:*:*:*:*:*:*","matchCriteriaId":"C2377350-7B69-4C49-889A-D63A3E4C1002"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)ji6:*:*:*:*:*:*:*","matchCriteriaId":"2913C352-E21F-4ECE-8A13-BA21CC00D02E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jj:*:*:*:*:*:*:*","matchCriteriaId":"8AD90F4A-2A86-4A98-A157-D93C382717A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jj1:*:*:*:*:*:*:*","matchCriteriaId":"B8FB2D76-9BE1-4C39-A3B0-BD6F45E20E11"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk:*:*:*:*:*:*:*","matchCriteriaId":"1739E9AD-154D-40C2-A761-F7133BC06C3D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1:*:*:*:*:*:*:*","matchCriteriaId":"FA700809-C25D-49F8-B930-7459F8AE9DCE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1t:*:*:*:*:*:*:*","matchCriteriaId":"2AEB7B3E-4E91-477F-BD62-9A28578CCA80"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2:*:*:*:*:*:*:*","matchCriteriaId":"58C5D255-C0FE-47E6-A920-3539306F9845"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2a:*:*:*:*:*:*:*","matchCriteriaId":"7C8DF3B4-A424-4B70-9116-28E2C4DFB776"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk3:*:*:*:*:*:*:*","matchCriteriaId":"4677B840-6636-4D8C-9E1C-47FEB8F3116A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk4:*:*:*:*:*:*:*","matchCriteriaId":"917D5477-E47E-4A01-979A-C9A0993BE34B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk5:*:*:*:*:*:*:*","matchCriteriaId":"09EC7701-3B46-4CFE-9EE5-2EA393D5A6D6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk6:*:*:*:*:*:*:*","matchCriteriaId":"4E18F8C6-E592-4507-8B93-E9AEA5C12CC1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jk7:*:*:*:*:*:*:*","matchCriteriaId":"5F9881DB-6F66-41D6-8AEE-7DAE4FFF42E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn:*:*:*:*:*:*:*","matchCriteriaId":"32E6CCE7-88BB-4F4F-9253-EC67B5076767"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn3:*:*:*:*:*:*:*","matchCriteriaId":"2EBD0947-656E-4CB0-9B4F-1A1F7AA360C1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn4:*:*:*:*:*:*:*","matchCriteriaId":"A5D6C6EE-CFD9-49A9-8784-498560847737"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn6:*:*:*:*:*:*:*","matchCriteriaId":"5187A9D2-A057-40E7-84E1-89BE32AFA95C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn7:*:*:*:*:*:*:*","matchCriteriaId":"FFEE60A6-9E75-4B20-A06D-411E774511B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn8:*:*:*:*:*:*:*","matchCriteriaId":"1451BB33-6BE0-4F4A-A193-14E13DECEE20"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn9:*:*:*:*:*:*:*","matchCriteriaId":"5F0FC09E-8C60-4EAC-B729-3BE3524E6F08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn11:*:*:*:*:*:*:*","matchCriteriaId":"DD355DC3-51F1-4CEA-98B1-E08EEE03BFD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn13:*:*:*:*:*:*:*","matchCriteriaId":"49B4A0C4-B0CF-4040-9EB0-1529BCAD0DF9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn14:*:*:*:*:*:*:*","matchCriteriaId":"4071E320-789E-4E1D-982B-C265F4228FEA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jn15:*:*:*:*:*:*:*","matchCriteriaId":"8EC38DE9-5D5D-452A-AC42-C1D24418FDB4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb:*:*:*:*:*:*:*","matchCriteriaId":"9BC3CD43-F30A-484B-9285-D925C1262212"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb1:*:*:*:*:*:*:*","matchCriteriaId":"F807A36A-9363-40F1-9B20-E5C4D503EB1D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb2:*:*:*:*:*:*:*","matchCriteriaId":"5200C1CD-DEAB-44FD-970D-098F3E01F36B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb3:*:*:*:*:*:*:*","matchCriteriaId":"E8E71841-512D-483C-A911-86EA745AC00E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb4:*:*:*:*:*:*:*","matchCriteriaId":"BBB655C5-2D7B-4ED5-89D6-4ED613CF3934"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb5:*:*:*:*:*:*:*","matchCriteriaId":"BAE556AB-093C-4992-8F5B-F240526AAA64"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb6:*:*:*:*:*:*:*","matchCriteriaId":"4BA0BCD1-4E75-4F39-B960-4B6B1B357442"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc:*:*:*:*:*:*:*","matchCriteriaId":"F17F3285-80E8-4BE5-8704-3379CF326601"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc1:*:*:*:*:*:*:*","matchCriteriaId":"9669DF61-DDC5-498D-906A-494D56BAE450"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc2:*:*:*:*:*:*:*","matchCriteriaId":"00B0502B-3363-4F3C-A147-8888B894635B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc3:*:*:*:*:*:*:*","matchCriteriaId":"689327CA-F302-49FC-9365-F09E4A60E8FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc4:*:*:*:*:*:*:*","matchCriteriaId":"571ECF0D-06C6-4371-891C-FB68A3093F53"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd:*:*:*:*:*:*:*","matchCriteriaId":"8A38CF1F-37D9-4CBD-8B98-C24637FF7F56"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd1:*:*:*:*:*:*:*","matchCriteriaId":"0886F6DC-C590-48A0-BE27-6CD778EB37FA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd2:*:*:*:*:*:*:*","matchCriteriaId":"8552242D-0A93-4841-83F9-EA4D7F58938E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd3:*:*:*:*:*:*:*","matchCriteriaId":"4D0667D1-B4EC-4FF0-AC5D-9C1B04D84099"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp:*:*:*:*:*:*:*","matchCriteriaId":"F45D0EFD-784A-4CDB-8FDB-41F6869B4735"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp1:*:*:*:*:*:*:*","matchCriteriaId":"942CC01D-ED6E-4731-A61B-75CDF219F760"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp3:*:*:*:*:*:*:*","matchCriteriaId":"59CA018E-5160-40AE-953D-9559F23D2EAF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb:*:*:*:*:*:*:*","matchCriteriaId":"BBA595EF-8718-4477-8EEC-EA948C14F091"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb1:*:*:*:*:*:*:*","matchCriteriaId":"4CDCADB1-EA01-41AF-9D96-A6EDE42D7A9C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc:*:*:*:*:*:*:*","matchCriteriaId":"13763901-2D7B-485D-A957-E30587BCEB88"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc1:*:*:*:*:*:*:*","matchCriteriaId":"8B213166-77E2-4E13-8769-FA8AF6EEC33A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc2:*:*:*:*:*:*:*","matchCriteriaId":"7A3C0371-223A-433C-B8A3-C24A499EB82F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc3:*:*:*:*:*:*:*","matchCriteriaId":"A066A001-830B-4407-A5CD-AB99059C190E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc5:*:*:*:*:*:*:*","matchCriteriaId":"83B45095-526D-4BC5-A16B-6B5741F07FD8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc100:*:*:*:*:*:*:*","matchCriteriaId":"5110767E-DEBB-4BDB-848F-4BD77757ADBC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpd:*:*:*:*:*:*:*","matchCriteriaId":"C4A9F7DF-BB18-46FC-B471-3FC41F4CCD01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi1:*:*:*:*:*:*:*","matchCriteriaId":"C3A2E770-2D7A-4A09-AE89-B58F01FDE1B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi1t:*:*:*:*:*:*:*","matchCriteriaId":"B6546067-A0AD-4BCB-8519-1DF018EBF804"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi4:*:*:*:*:*:*:*","matchCriteriaId":"3AE13E73-F2E2-4F8D-B236-940C74335E3C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi5:*:*:*:*:*:*:*","matchCriteriaId":"5E08CCB1-054E-4ABB-8A68-5DC5D8464ECB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi5s:*:*:*:*:*:*:*","matchCriteriaId":"7AFA615E-E4DE-4D9B-B666-ADEF30B33059"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi6a:*:*:*:*:*:*:*","matchCriteriaId":"E790F111-F2C4-4898-BC24-D09C213F62DF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi7:*:*:*:*:*:*:*","matchCriteriaId":"92A0E2C0-519E-4DFA-897E-DF5DE59434A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi8a:*:*:*:*:*:*:*","matchCriteriaId":"00D510BB-FB26-4991-BCB7-9E79EBD195A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpi9:*:*:*:*:*:*:*","matchCriteriaId":"C1AADEEE-6B71-4A4E-B33D-BEA65B9CB0B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj2:*:*:*:*:*:*:*","matchCriteriaId":"D3BF63D2-734D-41F4-8FE0-7F07F482AA6A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj2t:*:*:*:*:*:*:*","matchCriteriaId":"BD4E1437-2511-40ED-848A-FFE4542D8B6E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj3:*:*:*:*:*:*:*","matchCriteriaId":"568E1EE8-78E7-4E24-88D1-9D42DE500F8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj3a:*:*:*:*:*:*:*","matchCriteriaId":"37F71B84-9188-4333-95B1-0801F03BC496"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj4:*:*:*:*:*:*:*","matchCriteriaId":"A42E49E0-08A9-49DF-B67D-537618A8881A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj5:*:*:*:*:*:*:*","matchCriteriaId":"806D68A3-6E80-4184-A5D7-FBA718B66BA6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj6:*:*:*:*:*:*:*","matchCriteriaId":"55BEDA52-B21D-4693-8E70-88350FDCACD8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj7:*:*:*:*:*:*:*","matchCriteriaId":"3E2365E7-F80F-430D-8F23-04191DE26DDE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj7c:*:*:*:*:*:*:*","matchCriteriaId":"E49AB188-17B6-4C2E-BC79-D4B410F38BFD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj8:*:*:*:*:*:*:*","matchCriteriaId":"17B04C67-F67A-4B7D-9826-D16DC88BD8A1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj8a:*:*:*:*:*:*:*","matchCriteriaId":"D9D272C6-4455-4B42-813D-900862918F33"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpj8b:*:*:*:*:*:*:*","matchCriteriaId":"703BB8C5-D89F-4587-B286-C34C9FC2EFB0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpk:*:*:*:*:*:*:*","matchCriteriaId":"9D6F2D03-4959-4AF3-ABEC-77751C40A2DB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpk1:*:*:*:*:*:*:*","matchCriteriaId":"BD5AE65B-2974-47D5-9023-AA1FB2031DF8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpk2:*:*:*:*:*:*:*","matchCriteriaId":"35B2299C-0303-4E0B-B194-7404F8C7FF96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpk3:*:*:*:*:*:*:*","matchCriteriaId":"27DFB3D9-013F-45B9-8E03-2CA8EF23A05F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)jpl:*:*:*:*:*:*:*","matchCriteriaId":"618D6BE0-305A-432D-A0F1-55FD119FDC2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"6E0A47B7-5AD3-4B4C-A2FD-4EE0381B3FCE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"499C6196-2D34-4312-9C3E-B1A6E8D21112"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"A12F00E7-8134-4CF4-ACD3-1E7E6F1C6332"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"9B828AA0-E0B2-4897-AF28-FC80B9FF81BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"9279A96A-43B2-4FD4-97F0-DA331EACF918"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"3479B06E-1B67-4399-BA3A-E02331E21BE8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"7855CC38-5E3E-486D-9322-7BF0DC1FF623"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"496E2D60-AEEF-4D34-ABE4-9A9B101643D0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"A740BDE4-B65E-4F6F-BAB7-BBA64567EC79"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m8a:*:*:*:*:*:*:*","matchCriteriaId":"3F391FDE-A48C-4F59-BC6F-7880B234E3A6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"E10916E9-6105-46F9-993D-F09C223003B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"4D2E9E28-64F4-469C-8F01-FC2290B57106"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s:*:*:*:*:*:*:*","matchCriteriaId":"AB84CE04-F2D0-4A37-B2BA-25126D1824D8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"E32C83FA-EBE9-4A84-B34A-25BBA4D47E3F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s1a:*:*:*:*:*:*:*","matchCriteriaId":"8957EB38-37CF-47FA-853D-7A1AA6079874"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"63ACFACC-23B7-4EAC-BDC0-E3C403642D88"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s2a:*:*:*:*:*:*:*","matchCriteriaId":"717FAD11-1B58-4D43-9628-468AC4CFBF31"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"0F3A95D5-157D-4335-87B4-8DA080A496FF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"5E613BC4-AC20-4E43-8FB3-2EE9F0A2610D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"8D54B325-22D5-4F21-BE28-BE28F6135FBF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"0444FAA1-6613-45DF-93E2-B19DF8FE157C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s6a:*:*:*:*:*:*:*","matchCriteriaId":"D1529F74-BB34-4490-8445-F75EA13CB7A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s7:*:*:*:*:*:*:*","matchCriteriaId":"0BAA5367-F81E-425A-A93C-B9220D1BB37A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s8:*:*:*:*:*:*:*","matchCriteriaId":"2B1ED4F8-3B6C-452D-A3D0-D2F1A24AF994"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s8a:*:*:*:*:*:*:*","matchCriteriaId":"FAF32BC7-57DF-4BF0-BF97-69E97CC048CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s9:*:*:*:*:*:*:*","matchCriteriaId":"B3836108-E847-4BB6-BFFE-7C81E9D94A10"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)s10:*:*:*:*:*:*:*","matchCriteriaId":"D38466E0-40AC-45C6-9C14-1BE309B079CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3\\(3\\)xb12:*:*:*:*:*:*:*","matchCriteriaId":"4B2F941F-E6B9-4E32-A6AE-790251F14EBD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3ja:*:*:*:*:*:*:*","matchCriteriaId":"29AC4FD0-5632-4E11-8FE0-11C7A537EE69"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jaa:*:*:*:*:*:*:*","matchCriteriaId":"96D7A4C9-4A05-48E4-9086-D9F590B3621B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jab:*:*:*:*:*:*:*","matchCriteriaId":"CC9097A2-FA1C-45F2-83C3-AD14F0A94962"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jax:*:*:*:*:*:*:*","matchCriteriaId":"D0973670-D749-4E72-9946-B8E0E6481F8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jb:*:*:*:*:*:*:*","matchCriteriaId":"7A001F37-5A61-43E6-974F-8C55395F526F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jbb:*:*:*:*:*:*:*","matchCriteriaId":"449BFE27-0253-4385-87EB-02342DCE0AF5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jc:*:*:*:*:*:*:*","matchCriteriaId":"3F80C380-33B0-4663-8BEE-745E1DCB194D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jca:*:*:*:*:*:*:*","matchCriteriaId":"268E31FA-3F53-4BB7-85B1-68D95BCB5571"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jd:*:*:*:*:*:*:*","matchCriteriaId":"61556CCC-D6F4-4811-9C3B-B030021597C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jda:*:*:*:*:*:*:*","matchCriteriaId":"A92FEA49-22BB-44F5-92E3-7DF857E267AE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3je:*:*:*:*:*:*:*","matchCriteriaId":"AC825E87-C2B2-47BF-A06A-73668FA66CF6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jf:*:*:*:*:*:*:*","matchCriteriaId":"A4D1C463-5B6D-4D6E-9E97-E0B43F5BDE5D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jg:*:*:*:*:*:*:*","matchCriteriaId":"9BA9E4BF-BAD2-4B1F-B36C-1148DF0D7DBD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jh:*:*:*:*:*:*:*","matchCriteriaId":"CDC815FA-3321-4681-B6BC-2051F40FFA61"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3ji:*:*:*:*:*:*:*","matchCriteriaId":"56963943-CEDB-46D0-B943-F97C28EDF418"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jj:*:*:*:*:*:*:*","matchCriteriaId":"9AE48E7A-5286-4A42-9D6C-A4056B6471F1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jk:*:*:*:*:*:*:*","matchCriteriaId":"E6AC7D68-3BF6-47B5-8349-1C517ACA3CBB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jn:*:*:*:*:*:*:*","matchCriteriaId":"46A33CE8-F2BF-40D4-98E5-AC40982ED2E1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jnb:*:*:*:*:*:*:*","matchCriteriaId":"D27A169F-AAD8-456F-B63F-686F705C2D9D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jnc:*:*:*:*:*:*:*","matchCriteriaId":"876B5D0D-1307-4BF4-A563-B97392D56514"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jnd:*:*:*:*:*:*:*","matchCriteriaId":"0CF13C58-AAE4-40A0-9742-6187B7D779CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jnp:*:*:*:*:*:*:*","matchCriteriaId":"3F7CC431-1F3D-4D37-A5DD-5639D5F52B9A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpb:*:*:*:*:*:*:*","matchCriteriaId":"BB2F2C02-4CCE-4A37-B812-5FC78DD1EF9B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpc:*:*:*:*:*:*:*","matchCriteriaId":"C800FDAF-818C-4D32-BD44-D441D1D4666F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpd:*:*:*:*:*:*:*","matchCriteriaId":"57563716-0E51-46C7-906A-5A4657CE29CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpi:*:*:*:*:*:*:*","matchCriteriaId":"FB4DCA88-B880-455D-8FFC-F6901FA2E657"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpj:*:*:*:*:*:*:*","matchCriteriaId":"A115A501-6C7F-49DF-A9A1-16F6B6C5702C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpk:*:*:*:*:*:*:*","matchCriteriaId":"2B54C475-43A0-4F41-B6E8-6DE6C71F3E38"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3jpl:*:*:*:*:*:*:*","matchCriteriaId":"D20272F9-8706-435C-B9B7-90EFBD5450B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3m:*:*:*:*:*:*:*","matchCriteriaId":"BA102ABA-9E1E-404B-A09E-C86972652C35"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3s:*:*:*:*:*:*:*","matchCriteriaId":"2D105A75-3C37-4B44-8248-6037C98F2F93"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3sy:*:*:*:*:*:*:*","matchCriteriaId":"83762A91-54CF-4A93-90A9-349FB2DF16A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3t:*:*:*:*:*:*:*","matchCriteriaId":"80CBD152-07C5-433C-AF20-F42CD4997385"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.3xb:*:*:*:*:*:*:*","matchCriteriaId":"0A4DA2B1-C96D-4922-AD59-F23D32568175"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)cg:*:*:*:*:*:*:*","matchCriteriaId":"D962FBA3-CE59-401B-9451-45001775BA66"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)cg1:*:*:*:*:*:*:*","matchCriteriaId":"C13F2837-174B-4437-BF3F-CB6BFBF8F64D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"237D305E-016D-4E84-827C-44D04E3E0999"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"E993A32E-D2AF-4519-B4C9-7F576649D20F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"7260A66D-D477-440E-9A87-C05F9BD9E67C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"31059ED1-4D82-43D7-8EF7-042125289CF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"3B813F19-1B37-48F4-99EC-05E0CAA861FD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"4220D3B1-BD05-4169-91BA-B1AA45084C46"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"84BAF351-4C7F-44F8-812E-9C402CBBB5FF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"0595F3D8-8D99-4C82-9EC1-1187C52A6740"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"662ACAD0-7E80-4CB5-8409-03E72A3C59D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)sy4:*:*:*:*:*:*:*","matchCriteriaId":"A43EE852-5F22-4387-8332-A12FF3306210"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)t:*:*:*:*:*:*:*","matchCriteriaId":"A0B856BB-0FFE-4A92-9CE7-D71B6C611CD3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"C1EE552E-226C-46DE-9861-CB148AD8FB44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"CAF02C8E-9BB2-4DC2-8BF1-932835191F09"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"2C1B86D1-344A-470D-8A35-BD8A9ABE9D9A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(1\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"C5AC88EB-7A67-4CDE-9C69-94734966E677"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)cg:*:*:*:*:*:*:*","matchCriteriaId":"EA8E0069-21AB-497F-9F4C-6F7C041BA0E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"4151B2B1-B17F-4F1D-A211-34C7DB84E442"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"37B550C9-B2E4-44EE-8E0B-54D150C69A0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"BEBBA614-74E7-43C7-8D33-ADF4BD79D477"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"A7A852A3-7CAC-4D35-A583-556D17A0F7E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"DBF5D54D-4403-4C5E-AA65-9FD8661E283B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"1C89048E-2A5F-4818-92DB-812BB8FEDC90"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)sn1:*:*:*:*:*:*:*","matchCriteriaId":"9AA83229-767A-40EA-AE03-53DA0DD40B26"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)t:*:*:*:*:*:*:*","matchCriteriaId":"74E1226B-46CF-4C82-911A-86C818A75DFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"100DA24F-464E-4273-83DF-6428D0ED6641"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"063C0C47-25EB-4AA4-9332-8E43CD60FF39"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"A6004A94-FF96-4A34-B3CC-D4B4E555CFB4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(2\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"02866AED-A1B4-4D89-A11F-27089EF935BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"1C85BAAF-819B-40E7-9099-04AA8D9AB114"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"ED684DB4-527A-4268-B197-4719B0178429"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"88F41406-0F55-4D74-A4F6-4ABD5A803907"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"7082C083-7517-4CD4-BF95-CC7AF08D4053"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"370EF3DC-151F-4724-A026-3AD8ED6D801C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"2B8FB86F-2A89-413B-BED7-97E3D392804E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"005EAD76-34BE-4E3F-8840-23F613661FE8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m6a:*:*:*:*:*:*:*","matchCriteriaId":"2595B3E3-7FD4-4EFF-98A2-89156A657A0E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"FB998A1F-BAEA-4B8F-BE49-1C282ED3952E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m7a:*:*:*:*:*:*:*","matchCriteriaId":"A55379B7-2787-4BE6-8960-204C074F4CD1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"8AABDAB3-6329-48CF-BB49-DA2046AB9048"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"C96E41FF-DD4B-4D55-8C96-248C9A15226B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"64F7ACB5-4FE5-4B07-8B4D-28DF8D655199"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s:*:*:*:*:*:*:*","matchCriteriaId":"C63FF7C4-D9CE-4D6C-B36E-0C0DC06F453E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s0d:*:*:*:*:*:*:*","matchCriteriaId":"29F1BC11-BD27-4465-B92E-B01248B2EAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s0e:*:*:*:*:*:*:*","matchCriteriaId":"5A2DB2F4-DA30-4250-834D-B60D74B7B1F8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s0f:*:*:*:*:*:*:*","matchCriteriaId":"C5323B67-7A30-44B6-B3FB-0148444F1725"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"D4408CD8-DC1D-4102-924B-E9E28FC5CECF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"C2A39749-3A95-41B6-850B-4D388E6242B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"67B663F9-DBF4-4EEE-836D-C83BF99A682A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"55E780F3-D378-4201-AC69-79C356EE9CE5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"28FE5158-FA37-476B-8289-11733BB9AFF3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"24AE7F08-FB39-4E35-81AD-0186F2A539D7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s6a:*:*:*:*:*:*:*","matchCriteriaId":"447FAF3B-8E93-4A2C-A8B1-1A2F7D958754"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s7:*:*:*:*:*:*:*","matchCriteriaId":"08E2628F-456D-4471-A914-D92157725CB2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s8:*:*:*:*:*:*:*","matchCriteriaId":"CCA37E61-7EA5-45F3-87F6-432B591A79BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s9:*:*:*:*:*:*:*","matchCriteriaId":"4AE143DA-B2AA-47C3-BA8D-F0C02AFF36BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)s10:*:*:*:*:*:*:*","matchCriteriaId":"4C1F539B-8422-43AD-8BFB-E57622035B9D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)sn1:*:*:*:*:*:*:*","matchCriteriaId":"5F0C961B-833E-4F45-AAD0-DB8CDBC3A988"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4\\(3\\)sn1a:*:*:*:*:*:*:*","matchCriteriaId":"D604EC27-EC42-435C-93E4-2DCB62AEA3D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4cg:*:*:*:*:*:*:*","matchCriteriaId":"A0216135-6D51-4465-923D-4DD072B1F12D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4m:*:*:*:*:*:*:*","matchCriteriaId":"AA84723C-094C-427D-883C-C5F565C38CD6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4s:*:*:*:*:*:*:*","matchCriteriaId":"9DE6DE69-D32B-4D77-B164-9E5067701225"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4sn:*:*:*:*:*:*:*","matchCriteriaId":"B9AD49C3-6025-4EB6-AC38-972BBACAF28E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4sy:*:*:*:*:*:*:*","matchCriteriaId":"136CFD4A-CA46-4552-86AA-6233F18A28C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.4t:*:*:*:*:*:*:*","matchCriteriaId":"512D35A9-14FB-4797-88F1-AAE6F1232057"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"9613EE90-A90A-4817-A5A1-F78A9F3BA571"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"87A96A92-02E7-440C-9E46-0FBE8CE75E44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"03F1AEF3-08BD-4CC0-A36A-D26D550853E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"8DD9FF45-C8C2-42E2-B329-48C037A10521"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"36CBB93A-A8C8-477E-B530-B0058C3D15B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"075BBA36-281F-4164-A1ED-04A2B3589B00"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sn1:*:*:*:*:*:*:*","matchCriteriaId":"DFB675E0-5497-4307-9B1C-4CBFAEE612FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy:*:*:*:*:*:*:*","matchCriteriaId":"6465E3DA-90F0-4DD6-82B1-C9DF9FAEBDD2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy1:*:*:*:*:*:*:*","matchCriteriaId":"346BD6D0-AAF2-4C9A-8DD3-8C710302DCA1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy2:*:*:*:*:*:*:*","matchCriteriaId":"5A5B7053-7F9C-432C-B6F1-DAC00B0C9619"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy3:*:*:*:*:*:*:*","matchCriteriaId":"0D029D52-65E5-4129-AB47-E873F53799CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy4:*:*:*:*:*:*:*","matchCriteriaId":"31605A68-9398-4239-A137-DD0516BD2660"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy5:*:*:*:*:*:*:*","matchCriteriaId":"727E596A-295D-4D70-810A-436FC6A4415D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy6:*:*:*:*:*:*:*","matchCriteriaId":"368210A0-CC15-4FB9-8334-4ED475523C2C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy7:*:*:*:*:*:*:*","matchCriteriaId":"D37EF429-EE6B-4A72-9D76-4FC1E6E19E01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy8:*:*:*:*:*:*:*","matchCriteriaId":"9969CCF7-EAD0-4BEA-BCDB-F22A1E0C7C18"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)sy9:*:*:*:*:*:*:*","matchCriteriaId":"1C258F34-C557-4586-A8D0-590EC37E252E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)t:*:*:*:*:*:*:*","matchCriteriaId":"59F21FEC-A536-45CB-9AE5-61CE45EAD1B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"0340EC20-7099-4F13-8DE6-84475B2A52CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"6994F100-864F-4512-9141-F7D1050F9DD4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"FC0CC364-FF3A-4FB3-8004-6628400BC7DB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(1\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"67A1BC08-28AF-4583-BE21-0D85CA2D7B6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"3A259566-AA04-4DE8-900D-865384E56C8E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"6CF70F3C-FAC8-4691-AF95-1B5B828A9D41"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"AF08E7CE-DE01-43B2-A9F0-1CE657E79260"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"BC500D08-0DE1-4AA8-AE97-0CF17A706430"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"E86EA2EC-7FEA-4AE8-8CE0-45CA3C21B943"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"5CFF6E14-D29F-41F3-BD25-A1DB0A464592"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)t:*:*:*:*:*:*:*","matchCriteriaId":"7A4E00DF-60FD-48F2-A69A-D709A5657F6A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"0F5D3761-16C8-413A-89AD-C076B9B92FF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"F690BEC9-FAE9-4C02-9993-34BF14FA99EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"2BEA314F-8C89-4D6C-A6B6-3E9247A35B7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)t4:*:*:*:*:*:*:*","matchCriteriaId":"B0B8565B-3EE6-48DC-AE92-9F16AFFC509C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(2\\)xb:*:*:*:*:*:*:*","matchCriteriaId":"0D604189-E382-47B3-B9D3-A6D2EA3B2C80"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"716EC9AA-0569-4FA7-A244-1A14FA15C5AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"39166A66-859D-43A7-9947-3F3C32FBFAAE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"097D1950-6159-45A2-8653-D3F90044D0C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"F421AC3C-B0BC-4177-ACDB-87792C1636EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m2a:*:*:*:*:*:*:*","matchCriteriaId":"EA965B88-3464-4320-B9C4-594C49C9C0F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"09CD336D-1110-4B0C-B8D4-7C96293CBADE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"47C580D9-A2EC-4CBB-87F5-1F5CBA23F73F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m4a:*:*:*:*:*:*:*","matchCriteriaId":"3C427BA8-3A8C-4934-997B-6DDF9CEB96AE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m4b:*:*:*:*:*:*:*","matchCriteriaId":"90950C85-D631-4F60-AB3E-3ED1D74D56B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m4c:*:*:*:*:*:*:*","matchCriteriaId":"CD79CA0D-7D90-4955-969A-C25873B0B9D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"C7809674-4738-463E-B522-FC6C419E2A09"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"FFD51F00-C219-439F-918E-9AF20A6E053A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m6a:*:*:*:*:*:*:*","matchCriteriaId":"57BCB671-7ED0-43D5-894F-8B3DBF44E68E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"D4802BC7-F326-4F6E-9C74-04032FF35FEE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"DEDE3BCF-B518-47B0-BD3B-0B75515771E3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"1A5C9BF5-0C29-4B50-9A86-29F0ECD44F1D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m10:*:*:*:*:*:*:*","matchCriteriaId":"B1B0621A-D7A2-415B-91ED-674F2FB4227B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m11:*:*:*:*:*:*:*","matchCriteriaId":"3D9D7FDD-8CE6-4E83-A186-734BC5546E35"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)m11a:*:*:*:*:*:*:*","matchCriteriaId":"271D901A-3196-4653-A04E-07A6BC13B44D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s:*:*:*:*:*:*:*","matchCriteriaId":"1194A7BD-CB51-42CD-96E6-9ACF126DD8CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s0a:*:*:*:*:*:*:*","matchCriteriaId":"CB52603C-CED4-4330-BB53-DDDFEA83882A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"F40A87C1-5EDB-4B50-84CF-729F5037E870"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s1a:*:*:*:*:*:*:*","matchCriteriaId":"E3BFDBE4-7AD9-418F-8DA5-F97BB37E46BD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"42C9B84C-F9DC-4F9E-82F2-04004D539C36"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"5E246B9E-F93F-4BB2-9BA4-438FCC4A711B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"DE884ADE-FD51-4F10-89A8-D871E7407C83"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s5:*:*:*:*:*:*:*","matchCriteriaId":"B00BF54E-CBFB-4ECD-9EDF-0A8331AF2BE6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s6:*:*:*:*:*:*:*","matchCriteriaId":"AC22B2CD-5154-4055-A6A7-4C31B84B032B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s6a:*:*:*:*:*:*:*","matchCriteriaId":"10082A46-7AD3-4533-9A15-267953D9E642"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s6b:*:*:*:*:*:*:*","matchCriteriaId":"7ED8D1FE-5880-484E-810B-B1CDC2C9F7CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s7:*:*:*:*:*:*:*","matchCriteriaId":"6ADD1575-BB35-40CE-8452-3D34E25995B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s8:*:*:*:*:*:*:*","matchCriteriaId":"67FE59A3-5BA1-4C68-8959-A5B0CA61CDB4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s9:*:*:*:*:*:*:*","matchCriteriaId":"B6B02867-F082-4A57-9E2E-12B0F4C77526"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s9a:*:*:*:*:*:*:*","matchCriteriaId":"E8389200-0585-456E-8D0B-D725266ADBBC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s10:*:*:*:*:*:*:*","matchCriteriaId":"EFEF03FA-FBF2-477F-A5E2-67F47610897A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s10a:*:*:*:*:*:*:*","matchCriteriaId":"0969524D-EB41-47F0-8370-2E38ED7493BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s10b:*:*:*:*:*:*:*","matchCriteriaId":"91D97C79-48C6-4A3E-8C10-AC04BFDF2951"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)s10c:*:*:*:*:*:*:*","matchCriteriaId":"985AA3DF-F0F3-44C9-B659-282382E1B5C1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"C84498B4-7002-44D1-B2B7-B43F3081D258"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5\\(3\\)sn0a:*:*:*:*:*:*:*","matchCriteriaId":"E10003D7-8501-4A8C-AED1-A9F9B79D0666"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5m:*:*:*:*:*:*:*","matchCriteriaId":"776F6056-A2C5-4B7A-AB80-F4191F439547"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5s:*:*:*:*:*:*:*","matchCriteriaId":"328176FC-7F02-40D0-8397-48A731C0C8A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5sn:*:*:*:*:*:*:*","matchCriteriaId":"55B480A8-E79C-4C72-8B8B-BCDA41109D9B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5sy:*:*:*:*:*:*:*","matchCriteriaId":"5D676592-22E3-4D76-8B6C-C5FC759F53F3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5t:*:*:*:*:*:*:*","matchCriteriaId":"C9D89188-119F-4E89-ACA2-9AAFAC9B9FCC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.5xb:*:*:*:*:*:*:*","matchCriteriaId":"CBF79EAD-B779-488C-BE14-A0ED56E82A78"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)s:*:*:*:*:*:*:*","matchCriteriaId":"0F61B07A-7933-476F-951A-AD0019D2443D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"41939712-5075-4924-ABF2-467430B37197"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"E7CBC8C7-E3B2-4659-9B47-C0F16817F46A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"3DC59C3E-A2A4-4A1A-B561-E411D7DE85E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"945363EE-FE7A-44ED-A4A0-942A1F9B2702"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"F1CEA598-B4E5-44E6-AA1A-79DC4FE3B62E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)sn1:*:*:*:*:*:*:*","matchCriteriaId":"2481A9F2-2C99-4A78-B8B4-0D073A6CFED5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)sn2:*:*:*:*:*:*:*","matchCriteriaId":"667CB7FD-280B-42D6-9E45-EA04A1DC7701"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)sn3:*:*:*:*:*:*:*","matchCriteriaId":"65DD79B6-A44A-447F-A69D-C7C4193F5C1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)t:*:*:*:*:*:*:*","matchCriteriaId":"5E25B3DC-B9A7-4DFC-8566-3F790F460DDC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)t0a:*:*:*:*:*:*:*","matchCriteriaId":"679DCA8C-F64B-4716-BCC9-9C461A89CB29"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"EF662E36-0831-4892-850F-844B0E0B54DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"1E71F49D-E405-4AB4-9188-DA7B338DFD7B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(1\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"204B0A52-F6AB-406B-B46D-E92F2D7D87F7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)s:*:*:*:*:*:*:*","matchCriteriaId":"700D0D31-138B-4F9A-8C76-3AF8B9D2C59C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)s1:*:*:*:*:*:*:*","matchCriteriaId":"B843CEE5-4D53-414D-95C7-4BA515818E87"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)s2:*:*:*:*:*:*:*","matchCriteriaId":"1BB5DABC-4DAF-4696-A8AE-D4B6B188B9EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)s3:*:*:*:*:*:*:*","matchCriteriaId":"72480900-6E08-425F-965D-143B348E374A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)s4:*:*:*:*:*:*:*","matchCriteriaId":"1EBA0926-E790-4B1C-A549-5B7D2F040E5A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"12D439A6-E8A8-4389-A7C8-2F4BCB7C3854"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp:*:*:*:*:*:*:*","matchCriteriaId":"4E903D9F-530D-4597-ABA9-4C1CFB79814B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp1:*:*:*:*:*:*:*","matchCriteriaId":"9AE10B51-53FB-4F30-BAA0-0BD92C3D5C88"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp2:*:*:*:*:*:*:*","matchCriteriaId":"5060BAEA-DF8F-4B85-84F5-1410FD45C733"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp3:*:*:*:*:*:*:*","matchCriteriaId":"CB56857D-029C-4DA8-B439-F1B89EA32074"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp4:*:*:*:*:*:*:*","matchCriteriaId":"7F91AC2D-86F7-4618-A31B-DE081D4C21BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp5:*:*:*:*:*:*:*","matchCriteriaId":"D25B94F9-F10F-47CE-8340-CE56E7ED31E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp6:*:*:*:*:*:*:*","matchCriteriaId":"8C32C536-640C-468D-872F-442697DB9EE6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp7:*:*:*:*:*:*:*","matchCriteriaId":"38DE4F33-A677-4848-BB33-10C4A4655735"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp8:*:*:*:*:*:*:*","matchCriteriaId":"BF0A4820-F737-4A3A-8A08-E2C3EE6F6E66"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp8a:*:*:*:*:*:*:*","matchCriteriaId":"83758252-FF68-432F-8670-AABE1DD0C425"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp9:*:*:*:*:*:*:*","matchCriteriaId":"0894FC09-880C-44D5-B67D-81C92D96D790"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)sp10:*:*:*:*:*:*:*","matchCriteriaId":"81713C7A-EADE-4722-B61C-3BA1671748B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)t:*:*:*:*:*:*:*","matchCriteriaId":"09578DDF-5D13-47C1-9BD1-A1A8B9B0C87D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)t0a:*:*:*:*:*:*:*","matchCriteriaId":"6DDCF08B-3A61-4B3D-BF35-ABB5F11EA7E3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)t1:*:*:*:*:*:*:*","matchCriteriaId":"5BBF8B70-DFBE-4F6E-83F0-171F03E97606"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)t2:*:*:*:*:*:*:*","matchCriteriaId":"CA55D660-66C6-4278-8C27-25DB2712CC1A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(2\\)t3:*:*:*:*:*:*:*","matchCriteriaId":"5609B342-D98E-4850-A0FE-810699A80A1F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"8320F23D-F6BE-405B-B645-1CEB984E8267"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"4CE2670E-8C17-448D-A5BD-5A4FBCAEC35A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"C7C5C705-6A8C-4834-9D24-CFE26A232C15"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m1a:*:*:*:*:*:*:*","matchCriteriaId":"691BA27E-77AB-4A30-916D-3BB916B05298"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m1b:*:*:*:*:*:*:*","matchCriteriaId":"CC270E40-CABA-44B4-B4DD-E9C47A97770B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"EC1DB8C1-7F7D-4562-A317-87E925CAD524"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m2a:*:*:*:*:*:*:*","matchCriteriaId":"1A1887D9-E339-4DC6-BE24-A5FF15438B2F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"8AB2645F-C3BF-458F-9D07-6D66E1953730"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m3a:*:*:*:*:*:*:*","matchCriteriaId":"1B2303A3-CAF1-4DBA-BB6E-F205C23DCE6D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"686FD45C-7722-4D98-A6D7-C36CAC56A4AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"871E33AC-B469-47BA-9317-DC9E3E9BF5C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"C4091CAC-BFAA-404C-A827-4DA9EADDF621"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m6a:*:*:*:*:*:*:*","matchCriteriaId":"E0DA9FCA-4166-4084-96AF-E82CC4A4DB25"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m6b:*:*:*:*:*:*:*","matchCriteriaId":"369A99E0-3451-41D1-8C56-5352EA689950"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"33D4A7FA-E4E0-49C2-97FD-A547A1612F75"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"DA0B918F-A28C-4B5A-A566-6E588B4F6696"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"436114F2-D906-4469-99C4-10B75253B3D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(3\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"466F2336-03D9-4842-BC3D-861749756B9F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(4\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"494F7651-927A-418D-B01A-1C30BFE28560"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(5\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"E9ACFB65-C99B-4402-A8E5-914533FF3F2F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(7\\)sn:*:*:*:*:*:*:*","matchCriteriaId":"F805324A-1593-4B48-B597-CF870D35944B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(7\\)sn1:*:*:*:*:*:*:*","matchCriteriaId":"C78D1111-D91D-4E43-BC47-86EB37AACF75"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6\\(7\\)sn2:*:*:*:*:*:*:*","matchCriteriaId":"B949D73E-0ED4-40CA-801E-F0BEE22157B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6m:*:*:*:*:*:*:*","matchCriteriaId":"51041A14-3F48-45BE-8E47-C36612E986AE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6s:*:*:*:*:*:*:*","matchCriteriaId":"CC94DE11-F588-4060-BB80-5C65F2148FFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6sn:*:*:*:*:*:*:*","matchCriteriaId":"CF945F99-58E1-4F5C-AA45-6FA196A016D8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6sp:*:*:*:*:*:*:*","matchCriteriaId":"863FA0B3-B5BC-4A15-B089-E5DB084E59EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.6t:*:*:*:*:*:*:*","matchCriteriaId":"8F7F9090-039D-4F43-8FE3-3D7A65BCC03E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"9C8A00BF-4522-467B-A96E-5C33623DCA2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"D2A434E7-B27C-4663-BE83-39A650D22D26"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"47C106CF-CBD3-4630-8E77-EDB1643F97E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"A1DB7943-5CE1-44F6-B093-5EA65BF71A59"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"64404B00-4956-47B8-ACDB-88E365E97212"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"6FE6A696-5CBC-4552-A54E-55C21BC74D7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m4a:*:*:*:*:*:*:*","matchCriteriaId":"41237041-1D82-4C6C-BF48-ECEDF9DB08C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m4b:*:*:*:*:*:*:*","matchCriteriaId":"CAB72CA3-088E-4EFE-BE1C-190C64101851"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"FA584AC4-96AB-4026-84DF-F44F3B97F7E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"22EB41FD-4DE2-4753-A18C-C877B81B51D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"158EDE62-04C9-471B-B243-309D49583E67"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"D8609F10-2B43-4BDC-AAF1-80D589910EF4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7\\(3\\)m9:*:*:*:*:*:*:*","matchCriteriaId":"270A1FF4-8541-4026-AE2D-7D500DC401E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.7m:*:*:*:*:*:*:*","matchCriteriaId":"E2FB0947-7D33-4077-A46A-0426EF171512"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"5A58C01B-459E-432F-A49F-68EC45EE6E14"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"D8DFE673-9A5E-4369-A7BB-3DE7F8E503C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m0b:*:*:*:*:*:*:*","matchCriteriaId":"4125EE35-ED52-4350-A4CE-E90EA8ED6BAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"56AD5BA0-4D08-4A92-88BE-60AF29BC35CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m1a:*:*:*:*:*:*:*","matchCriteriaId":"2881C5EA-0AC7-4074-A4FD-9FA33E3F60A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"198FF520-7631-49D9-B8A8-2E64F6237CC0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m2a:*:*:*:*:*:*:*","matchCriteriaId":"94E067E8-552B-4691-9F6A-C5E8766287BE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"3C4162EC-90DE-4194-8ABC-55CCB8C24FF6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m3a:*:*:*:*:*:*:*","matchCriteriaId":"405CC56E-574F-4983-B492-C8811FAF06E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m3b:*:*:*:*:*:*:*","matchCriteriaId":"B1829074-66F9-4B3B-A084-B88D838CFC44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"6715A135-61A7-4E56-948D-8A8D5F7C98C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"4C836C26-DBC1-42CB-9B73-9F248D4F2B6A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m6:*:*:*:*:*:*:*","matchCriteriaId":"B2CC4602-D1F5-4843-991A-2903C8336251"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m7:*:*:*:*:*:*:*","matchCriteriaId":"7BCCD64D-D73C-45FE-B49C-F79E23431B37"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8\\(3\\)m8:*:*:*:*:*:*:*","matchCriteriaId":"7561E37E-E7B9-419F-949F-B8EF52DF00DE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.8m:*:*:*:*:*:*:*","matchCriteriaId":"325341DF-16FD-4D38-A724-3D5F4F4D97B5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m:*:*:*:*:*:*:*","matchCriteriaId":"EEFE8A85-7F63-4E4C-A3FE-7B7E27AD1DF4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m0a:*:*:*:*:*:*:*","matchCriteriaId":"0807458A-2453-4575-AE19-0DE15E04B88C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m1:*:*:*:*:*:*:*","matchCriteriaId":"9BA0A0E0-A9D8-4FC3-88BD-FA0E7290A9A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m2:*:*:*:*:*:*:*","matchCriteriaId":"6A1AF57E-79E9-40F2-817A-5E7D2760F1E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m2a:*:*:*:*:*:*:*","matchCriteriaId":"BEF9CEA3-054B-4469-A10F-DFCB9057E5E4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m3:*:*:*:*:*:*:*","matchCriteriaId":"B8313597-49A9-4918-B8D5-8E53C5C9AFAB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m3a:*:*:*:*:*:*:*","matchCriteriaId":"31D6B0E4-92F1-42FD-92DA-887D3D38CEBD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m3b:*:*:*:*:*:*:*","matchCriteriaId":"13C6DA27-2445-4850-B0EF-82EE8C01C0B5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m4:*:*:*:*:*:*:*","matchCriteriaId":"63BEFCC8-CC04-4C41-B31A-BF01E40FA1AE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m4a:*:*:*:*:*:*:*","matchCriteriaId":"F0E473CF-FE4B-4DBE-9EBE-337AE415FA4D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9\\(3\\)m5:*:*:*:*:*:*:*","matchCriteriaId":"730D29C4-2BC5-478C-AAFD-E8CF598A5CFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios:15.9m:*:*:*:*:*:*:*","matchCriteriaId":"E2278286-B825-47E4-8AA4-43D1AF527A9F"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.2.0se:*:*:*:*:*:*:*","matchCriteriaId":"8DFD3A39-9E02-409C-9F9C-9C90D58D3A3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.2.1se:*:*:*:*:*:*:*","matchCriteriaId":"D5A0FE9F-FFEC-400B-8CDF-2888FDCD01A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.2.2se:*:*:*:*:*:*:*","matchCriteriaId":"EFD751BA-0987-48BB-89C0-A82F78816423"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.2.3se:*:*:*:*:*:*:*","matchCriteriaId":"CDF46126-B8C2-4C03-BF28-F36BB54A6F01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.2se:*:*:*:*:*:*:*","matchCriteriaId":"D1BFDC89-6D9F-4AB1-91D2-B50F8AF16C86"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.0se:*:*:*:*:*:*:*","matchCriteriaId":"AEC52EC4-6658-40AB-A357-F9B538F21ED2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.0sg:*:*:*:*:*:*:*","matchCriteriaId":"A52C1850-27F7-40C8-BA26-660D160AD163"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.1se:*:*:*:*:*:*:*","matchCriteriaId":"63B34E77-D0BD-4501-A125-CDBE9A47031F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.1sg:*:*:*:*:*:*:*","matchCriteriaId":"1AAC822D-E886-46A9-80E8-06DD753A458E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.2se:*:*:*:*:*:*:*","matchCriteriaId":"9029376B-E263-4B30-8B97-7101CFF7D39D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.2sg:*:*:*:*:*:*:*","matchCriteriaId":"6893B368-D3C1-416D-A4E8-6484AF91C7CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.3se:*:*:*:*:*:*:*","matchCriteriaId":"BD337928-C7D9-4CBC-8785-5C49FCA5B90F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.4se:*:*:*:*:*:*:*","matchCriteriaId":"10E83B0A-33F1-4154-969E-E66E800890DE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3.5se:*:*:*:*:*:*:*","matchCriteriaId":"287E952E-588D-4825-9EB3-03CE16F96E28"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3se:*:*:*:*:*:*:*","matchCriteriaId":"3E313042-DB7B-44AA-9DF6-3C07FC140680"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.3sg:*:*:*:*:*:*:*","matchCriteriaId":"9B56D76E-BEA0-490F-9FB8-9CE7422E9432"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.0sg:*:*:*:*:*:*:*","matchCriteriaId":"4C809C7E-738B-461F-9155-BC19AAC8B661"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.1sg:*:*:*:*:*:*:*","matchCriteriaId":"E6CDB780-F259-4A2D-B32C-0401601715FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.2sg:*:*:*:*:*:*:*","matchCriteriaId":"A8DBFACA-112F-48F6-BF0C-37FC6D133EC6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.3sg:*:*:*:*:*:*:*","matchCriteriaId":"95384E18-A319-4BFA-912F-7AC7C664A80A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.4sg:*:*:*:*:*:*:*","matchCriteriaId":"6B3C5A2B-85A8-4B75-A067-335D1DFE8C1E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.5sg:*:*:*:*:*:*:*","matchCriteriaId":"85512107-7E38-4C00-96D0-01D9EE7DD903"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.6sg:*:*:*:*:*:*:*","matchCriteriaId":"7707BC4D-6090-44CF-B304-A54A46FAD32C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.7sg:*:*:*:*:*:*:*","matchCriteriaId":"53D28F4F-5E14-48C1-8353-4D6A8C657FB4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4.8sg:*:*:*:*:*:*:*","matchCriteriaId":"8AC7331C-F9D5-4E3C-B39A-11E1ED9240DC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.4sg:*:*:*:*:*:*:*","matchCriteriaId":"1691574B-022B-4B0F-AE62-0DFC002466D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.5.0e:*:*:*:*:*:*:*","matchCriteriaId":"C14EB390-BA15-45C9-B971-D66CD98B0EDC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.5.1e:*:*:*:*:*:*:*","matchCriteriaId":"748C5458-8F16-4DA4-8BDE-D00BF42DC8C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.5.2e:*:*:*:*:*:*:*","matchCriteriaId":"2B82207E-7E19-4E0A-93E6-C631897793D5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.5.3e:*:*:*:*:*:*:*","matchCriteriaId":"B4A02F04-6717-403D-8A6B-B365F74DEE00"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.5e:*:*:*:*:*:*:*","matchCriteriaId":"9F4CEAD8-F773-4A8B-B076-4EEB61D7F420"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.0ae:*:*:*:*:*:*:*","matchCriteriaId":"CC32DB11-4E23-492E-A00E-E0DBF9131C64"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.0be:*:*:*:*:*:*:*","matchCriteriaId":"DA2306E8-ABFD-4C37-A911-7B35A654147C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.0e:*:*:*:*:*:*:*","matchCriteriaId":"455DAAB8-83B4-44B9-B2F7-2DC9EA796898"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.1e:*:*:*:*:*:*:*","matchCriteriaId":"5F462360-3597-420B-ACB8-44A6F622C8B9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.2ae:*:*:*:*:*:*:*","matchCriteriaId":"39DED4C1-E7AF-48E0-8B1A-839A87E52992"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.2e:*:*:*:*:*:*:*","matchCriteriaId":"96CA4E70-28BE-434C-811A-C16474CFD87C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.3e:*:*:*:*:*:*:*","matchCriteriaId":"E77A9A46-517E-467B-A702-E6F6DD9FCD96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.4e:*:*:*:*:*:*:*","matchCriteriaId":"AD485792-290B-4553-AAB2-DA7427DE7131"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.5ae:*:*:*:*:*:*:*","matchCriteriaId":"EB7139C7-3C02-46C9-8F89-CB517A706CC9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.5be:*:*:*:*:*:*:*","matchCriteriaId":"C0AD00E6-A155-4CCB-B329-7B536BEBC976"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.5e:*:*:*:*:*:*:*","matchCriteriaId":"0D365DFD-C99B-4F33-9A90-1162C7A4D3EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.6e:*:*:*:*:*:*:*","matchCriteriaId":"671F6847-6855-41BF-A148-944AEEB32A5D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.7ae:*:*:*:*:*:*:*","matchCriteriaId":"7207B1F1-AF21-4C02-A163-4289503A026C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.7be:*:*:*:*:*:*:*","matchCriteriaId":"A7CC0497-24F5-42ED-99A6-4C8642F73F08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.7e:*:*:*:*:*:*:*","matchCriteriaId":"120DA9BF-1153-41C8-B80D-3F99E0E28A8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.8e:*:*:*:*:*:*:*","matchCriteriaId":"89812FA8-230C-4F62-8AA8-7F13FA86B805"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.9ae:*:*:*:*:*:*:*","matchCriteriaId":"C116A982-58BF-4523-A5B1-83089E8557D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.9e:*:*:*:*:*:*:*","matchCriteriaId":"9D17DB28-2559-4837-8B4B-7CC722D73324"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6.10e:*:*:*:*:*:*:*","matchCriteriaId":"D92991EE-BB4A-499D-8F14-F7D0E32BE31E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.6e:*:*:*:*:*:*:*","matchCriteriaId":"CAEDC03A-CDD5-450E-9528-1DB9EC490DAF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.0bs:*:*:*:*:*:*:*","matchCriteriaId":"87687169-312C-41E6-9557-B2536A4CCA01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.0e:*:*:*:*:*:*:*","matchCriteriaId":"A56AE607-0AD0-487A-A266-C15EAF40F2CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.0s:*:*:*:*:*:*:*","matchCriteriaId":"E979597C-E614-45E9-9AC4-66DE323221BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.0xas:*:*:*:*:*:*:*","matchCriteriaId":"52E7F768-0ABD-486E-810E-7C444951F061"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.0xbs:*:*:*:*:*:*:*","matchCriteriaId":"7D46F3A2-C0C2-4083-B32F-B94DA4FD213E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.1as:*:*:*:*:*:*:*","matchCriteriaId":"312FDFDD-7612-4E79-A12E-7B1540324696"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.1e:*:*:*:*:*:*:*","matchCriteriaId":"5F8B8DBC-F273-4ADE-97F4-584DE23F1CEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.1s:*:*:*:*:*:*:*","matchCriteriaId":"55E908D0-7327-42B7-81C0-FA25BF45929C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.2e:*:*:*:*:*:*:*","matchCriteriaId":"705971E9-7FB4-43EA-A1AE-C91865EADE16"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.2s:*:*:*:*:*:*:*","matchCriteriaId":"5420E152-A00C-406C-8E27-6B7ADE4ABF5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.2ts:*:*:*:*:*:*:*","matchCriteriaId":"D8A56292-386C-4FC8-BC54-EF9E465F891B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.3e:*:*:*:*:*:*:*","matchCriteriaId":"F481A851-D607-4CEF-87C5-147FFBC97D3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.3s:*:*:*:*:*:*:*","matchCriteriaId":"036DAA45-B363-47BB-ADBA-992F381572EE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.4as:*:*:*:*:*:*:*","matchCriteriaId":"86176257-7075-476E-BE09-B0E469392BD0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.4e:*:*:*:*:*:*:*","matchCriteriaId":"355F4945-4FFA-469F-A799-815F371C637B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.4s:*:*:*:*:*:*:*","matchCriteriaId":"CCB1EA1E-D995-4732-9685-75AC9042D484"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.5e:*:*:*:*:*:*:*","matchCriteriaId":"1432B59F-5A66-4A5A-B3F7-E297700ED9C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.5s:*:*:*:*:*:*:*","matchCriteriaId":"5EA68978-C42E-4A5E-A0D6-7887FA0318B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.6s:*:*:*:*:*:*:*","matchCriteriaId":"9FF06D7B-A239-4046-A704-01C54D534F35"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.7s:*:*:*:*:*:*:*","matchCriteriaId":"4622910B-5459-4FA4-A8D0-239AF2EFFE06"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7.8s:*:*:*:*:*:*:*","matchCriteriaId":"F719709E-ACE9-4539-BA05-72F7DCB8BFBB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7e:*:*:*:*:*:*:*","matchCriteriaId":"3BD3E067-E41B-4C8E-B5B2-C91CF7153E79"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.7s:*:*:*:*:*:*:*","matchCriteriaId":"1156EB7F-677D-4267-9814-C14820B4E18A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.0e:*:*:*:*:*:*:*","matchCriteriaId":"013DD522-1561-4468-A350-C872B78FC291"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.0s:*:*:*:*:*:*:*","matchCriteriaId":"2835C64E-808F-4A6C-B245-7A9996FAFE3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.1e:*:*:*:*:*:*:*","matchCriteriaId":"6907E1FE-760E-4557-A472-1A1F0052B82B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.1s:*:*:*:*:*:*:*","matchCriteriaId":"8E1040AF-A087-4791-BFC3-36CA3F3208E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.2e:*:*:*:*:*:*:*","matchCriteriaId":"62291CDD-A775-44B4-85F3-CE1D494F55FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.2s:*:*:*:*:*:*:*","matchCriteriaId":"7F95B900-12A3-4488-BB50-20C972BEE169"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.3e:*:*:*:*:*:*:*","matchCriteriaId":"658EDFE2-6EC8-4DD3-AACA-C168F942712A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.4e:*:*:*:*:*:*:*","matchCriteriaId":"9FCBE369-81ED-4C94-8C44-53C6F4A087CC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.5ae:*:*:*:*:*:*:*","matchCriteriaId":"90005E78-413A-47D7-82B3-A3011E6B118D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.5e:*:*:*:*:*:*:*","matchCriteriaId":"D764D126-4604-43DD-9A66-BDD32565D893"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.6e:*:*:*:*:*:*:*","matchCriteriaId":"EA25E3C0-24C1-479C-8C8F-A6FB9C5002FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.7e:*:*:*:*:*:*:*","matchCriteriaId":"06067D8B-79BD-4982-909F-7C08BE5660C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.8e:*:*:*:*:*:*:*","matchCriteriaId":"8EAFB8DA-F9EC-4A42-A663-1BB4EF8F5E44"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.9e:*:*:*:*:*:*:*","matchCriteriaId":"672B77C7-0E6B-496D-9ACC-6AD965319B35"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.10ce:*:*:*:*:*:*:*","matchCriteriaId":"5CF82A10-0DCA-4813-9D47-C6CBD6F36B8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8.10e:*:*:*:*:*:*:*","matchCriteriaId":"2CA1D885-2270-4370-9F3F-CA80B0E96DD5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8e:*:*:*:*:*:*:*","matchCriteriaId":"5BC8D6F3-9A50-437D-B4BE-36CE4ADBC9C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.8s:*:*:*:*:*:*:*","matchCriteriaId":"54FEE2D8-2507-4485-A6D2-82393AB19C7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.0as:*:*:*:*:*:*:*","matchCriteriaId":"BC3B6D68-DA31-45EB-ACFD-AE703B2FA2D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.0e:*:*:*:*:*:*:*","matchCriteriaId":"B9EC727B-AF92-460D-B61D-F45ECEEE5D56"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.0s:*:*:*:*:*:*:*","matchCriteriaId":"94227B25-5C86-453C-9DC8-A8201C1D1FEE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.0xas:*:*:*:*:*:*:*","matchCriteriaId":"4293A90D-1FCA-456D-9D70-F5650B80B462"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.1as:*:*:*:*:*:*:*","matchCriteriaId":"6352A220-8F3E-4E08-8DD3-50E366434333"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.1e:*:*:*:*:*:*:*","matchCriteriaId":"D5604A84-8240-45B6-9027-B03AA549CD5C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.1s:*:*:*:*:*:*:*","matchCriteriaId":"10F278DC-5102-4A18-9C72-E8FEEDCC5729"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.2be:*:*:*:*:*:*:*","matchCriteriaId":"895DAB3D-5C14-4D0B-94FA-EB7C7C7BB0EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.2e:*:*:*:*:*:*:*","matchCriteriaId":"0B9846AE-1344-4EE4-9FDF-6CE17D9461FD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9.2s:*:*:*:*:*:*:*","matchCriteriaId":"513675B5-D62C-442D-8754-DC4F221942B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9e:*:*:*:*:*:*:*","matchCriteriaId":"13A26079-2C57-41EC-A001-3E2669963967"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.9s:*:*:*:*:*:*:*","matchCriteriaId":"0DF55161-75C6-4F79-A261-B99A222EAE3A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.0ce:*:*:*:*:*:*:*","matchCriteriaId":"3363DF79-8A5A-4BE2-B04C-253A4A3A0ADA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.0e:*:*:*:*:*:*:*","matchCriteriaId":"25725655-EBDE-4538-8AE1-CF5C81F09C5E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.0s:*:*:*:*:*:*:*","matchCriteriaId":"D9D9F45C-E71F-4425-A0C7-DFFEEC93C152"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1ae:*:*:*:*:*:*:*","matchCriteriaId":"A98F2654-46F3-4C63-A2C2-48B372C655B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1e:*:*:*:*:*:*:*","matchCriteriaId":"4D4E206B-37BF-4D61-BE90-80BB65C0C582"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1s:*:*:*:*:*:*:*","matchCriteriaId":"26FB3B1A-FB8C-4371-A6D2-AB83ECF17F96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1se:*:*:*:*:*:*:*","matchCriteriaId":"17674BAD-F2F1-4E63-AAE0-FEAC14C37CBE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1xbs:*:*:*:*:*:*:*","matchCriteriaId":"48B351B3-3A18-4068-A95D-68942955070E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.1xcs:*:*:*:*:*:*:*","matchCriteriaId":"007C8D80-2A6B-4C53-8A6B-0C95BCF1CA89"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.2as:*:*:*:*:*:*:*","matchCriteriaId":"1D12F65A-5B43-4612-8788-B697567C0B15"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.2e:*:*:*:*:*:*:*","matchCriteriaId":"4117E2EC-F58A-4B22-AB72-FC63A0D96E7E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.2s:*:*:*:*:*:*:*","matchCriteriaId":"2A005E0C-A744-4AFA-A1D1-2E3228E093FD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.2ts:*:*:*:*:*:*:*","matchCriteriaId":"DED25B1B-C47A-45E9-8235-081550FB0AD3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.3e:*:*:*:*:*:*:*","matchCriteriaId":"20286676-70FF-471C-9612-74E5F0ECB8E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.3s:*:*:*:*:*:*:*","matchCriteriaId":"86B7EC67-B431-4284-8781-9090D134B781"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.4s:*:*:*:*:*:*:*","matchCriteriaId":"3598539F-0EEB-45D6-8BA5-A2A3F69D556C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.5s:*:*:*:*:*:*:*","matchCriteriaId":"4CF349D4-BF1C-4127-B6FA-7AD379F62A3F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.6s:*:*:*:*:*:*:*","matchCriteriaId":"B6ABE123-BBA5-46CD-8578-4A1F3CB8BA08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.7s:*:*:*:*:*:*:*","matchCriteriaId":"CD674BF9-16F6-4817-9ADE-564A402A5F06"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.8as:*:*:*:*:*:*:*","matchCriteriaId":"8A4142E2-B8A8-4E78-B4ED-52F63C43C6F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.8s:*:*:*:*:*:*:*","matchCriteriaId":"A7DA3731-E719-4DB7-9783-1C00481141EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.9s:*:*:*:*:*:*:*","matchCriteriaId":"483A3F03-F5CC-45BD-AEB7-83E23601BB22"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10.10s:*:*:*:*:*:*:*","matchCriteriaId":"1692889D-BD16-41C6-A226-A9BAF6F64603"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10e:*:*:*:*:*:*:*","matchCriteriaId":"FFF8E8E1-215B-437E-B7EF-64F9AAFA73A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.10s:*:*:*:*:*:*:*","matchCriteriaId":"62170294-9984-4C61-AFBC-742C6E7CAB31"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.0e:*:*:*:*:*:*:*","matchCriteriaId":"F327F7D0-93E8-4005-9ECB-44852C16BB4C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.0s:*:*:*:*:*:*:*","matchCriteriaId":"6DAC081C-9A22-4CBC-A9D0-DD9995801791"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.1ae:*:*:*:*:*:*:*","matchCriteriaId":"27252883-091A-471D-87FC-E07EADBC6FFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.1e:*:*:*:*:*:*:*","matchCriteriaId":"2EF9D58E-CD75-47B1-938C-B5C0A73E28FA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.1s:*:*:*:*:*:*:*","matchCriteriaId":"F43F819E-3072-430F-8C52-B43FF28D4687"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.2ae:*:*:*:*:*:*:*","matchCriteriaId":"6BC3D979-02B2-4EEC-A6C2-A44C9FC694D9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.2e:*:*:*:*:*:*:*","matchCriteriaId":"F7C340CE-7F18-448B-B9BE-BFEB1724C882"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.2s:*:*:*:*:*:*:*","matchCriteriaId":"C80F59A9-C1EF-4E9B-B204-1EEC7FDF65BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.3ae:*:*:*:*:*:*:*","matchCriteriaId":"E9C1CA89-0FE4-4DC3-BB4B-299114E172AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.3e:*:*:*:*:*:*:*","matchCriteriaId":"5F79BC92-0869-447C-AF34-3FBF42375D1A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.3s:*:*:*:*:*:*:*","matchCriteriaId":"09A930B7-7B9B-426E-A296-9F29F4A03F5B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.4e:*:*:*:*:*:*:*","matchCriteriaId":"4615A652-96A3-4809-94C0-7B7BF607B519"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.4s:*:*:*:*:*:*:*","matchCriteriaId":"309952D7-B220-4678-A16D-AA5FF005F782"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.5e:*:*:*:*:*:*:*","matchCriteriaId":"4A31B2A2-E88A-49AA-B187-3EA91CB8842A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11.6e:*:*:*:*:*:*:*","matchCriteriaId":"1B26F38B-B72E-4BB7-B9FB-18C8AF92E05A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11e:*:*:*:*:*:*:*","matchCriteriaId":"610D0E75-7AE9-4003-A5D2-B7F24B7BBC37"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.11s:*:*:*:*:*:*:*","matchCriteriaId":"4EA33A9E-44A8-4463-9E70-352B5B14DB58"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.0as:*:*:*:*:*:*:*","matchCriteriaId":"60C5FC5B-BE2E-4BAC-AC23-58666BDEB553"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.0s:*:*:*:*:*:*:*","matchCriteriaId":"503EFE9E-C238-46BA-8CA3-DE8D5DDB9A2D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.1s:*:*:*:*:*:*:*","matchCriteriaId":"B6EC8B17-6EC2-47AF-818D-1DFBDA612FB0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.2s:*:*:*:*:*:*:*","matchCriteriaId":"278ACF0A-949B-486D-8F6C-ADC2AF25FC17"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.3s:*:*:*:*:*:*:*","matchCriteriaId":"37A30BA4-D760-4321-AAC8-04093AAAEA3E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12.4s:*:*:*:*:*:*:*","matchCriteriaId":"42616EA2-DDCF-4B57-BF2A-37968C82DDC6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.12s:*:*:*:*:*:*:*","matchCriteriaId":"A45A232A-C23B-4CC8-BD88-928397DAD8EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.0as:*:*:*:*:*:*:*","matchCriteriaId":"246251E8-7D4E-4CD4-8D4F-BF360780FA36"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.0s:*:*:*:*:*:*:*","matchCriteriaId":"09F35F75-75E8-4A20-94C4-5908E404C8CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.1s:*:*:*:*:*:*:*","matchCriteriaId":"9C01C1D8-A191-45B7-A6C5-EE225F05A49E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.2as:*:*:*:*:*:*:*","matchCriteriaId":"16D7ACF1-6A30-4D6E-AA69-D2F365E2791C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.2s:*:*:*:*:*:*:*","matchCriteriaId":"7E50FF89-8E71-4EA0-9AEC-2F800ED9D995"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.3s:*:*:*:*:*:*:*","matchCriteriaId":"3F6E9386-30B4-4E86-9676-E7E005274048"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.4s:*:*:*:*:*:*:*","matchCriteriaId":"7E70C455-E41C-4B17-847A-5F4281139252"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.5as:*:*:*:*:*:*:*","matchCriteriaId":"3DD0A60B-6848-4B9A-B11D-2C2952D2D48C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.5s:*:*:*:*:*:*:*","matchCriteriaId":"64A07329-3A7D-4483-AE69-4786FEB23D92"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.6as:*:*:*:*:*:*:*","matchCriteriaId":"F84E4463-DB0F-4B06-B403-B3606B386F02"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.6bs:*:*:*:*:*:*:*","matchCriteriaId":"E08D377F-EBEC-4234-8628-2CFD04E43CB0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.6s:*:*:*:*:*:*:*","matchCriteriaId":"665ACEAC-AE81-40F7-8A01-E8DB9DD7DD7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.7as:*:*:*:*:*:*:*","matchCriteriaId":"BAE50185-23ED-4640-9037-E45810793C85"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.7s:*:*:*:*:*:*:*","matchCriteriaId":"96637FB9-B552-417B-8C7F-4F4524F69690"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.8s:*:*:*:*:*:*:*","matchCriteriaId":"5DA6851D-6DC1-403F-A511-EE996FE832F5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.9s:*:*:*:*:*:*:*","matchCriteriaId":"B7C97617-6574-4EFD-8408-A9E21A56E1AC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13.10s:*:*:*:*:*:*:*","matchCriteriaId":"FB188B71-4CF0-49EA-BA00-10FEDF994D70"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.13s:*:*:*:*:*:*:*","matchCriteriaId":"09642959-B02D-45D0-A084-F820D08E1E74"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14.0s:*:*:*:*:*:*:*","matchCriteriaId":"FD803F59-1CD2-4CA9-9EB1-3CC4ABCD9547"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14.1s:*:*:*:*:*:*:*","matchCriteriaId":"B9247665-BBE7-4DEF-B97B-4981A0EA5CE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14.2s:*:*:*:*:*:*:*","matchCriteriaId":"E61E0102-B9B6-41F4-9041-0A5F144D849A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14.3s:*:*:*:*:*:*:*","matchCriteriaId":"579C9E7F-6AE4-4DF5-ABCF-DB390E4669E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14.4s:*:*:*:*:*:*:*","matchCriteriaId":"2A076E1F-3457-410A-8AB6-64416ECB20A7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.14s:*:*:*:*:*:*:*","matchCriteriaId":"22028008-F993-42E4-AB16-6FDDFC348864"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.0s:*:*:*:*:*:*:*","matchCriteriaId":"FAD93CD1-4188-40B7-A20E-9C3FE8344A27"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.1cs:*:*:*:*:*:*:*","matchCriteriaId":"0EEAB7F8-EAB5-4E7A-8A1B-38EC16D601FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.1s:*:*:*:*:*:*:*","matchCriteriaId":"2972E680-5A19-4858-9B35-0B959ED319A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.2s:*:*:*:*:*:*:*","matchCriteriaId":"F1BFE916-916F-4936-A331-21A0E8193920"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.3s:*:*:*:*:*:*:*","matchCriteriaId":"D0EC9A19-26E6-4E69-B4E7-852CB6327EAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.4s:*:*:*:*:*:*:*","matchCriteriaId":"5C5484A4-D116-4B79-8369-47979E20AACA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15s:*:*:*:*:*:*:*","matchCriteriaId":"9FAA253C-33BC-4601-8433-14E2EA19324E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.0as:*:*:*:*:*:*:*","matchCriteriaId":"97410577-A005-49B6-981C-535B3484E72F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.0bs:*:*:*:*:*:*:*","matchCriteriaId":"3420FB4D-8A6A-4B37-A4AE-7B35BEEEAF71"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.0cs:*:*:*:*:*:*:*","matchCriteriaId":"5568EABF-8F43-4A87-8DE4-A03E9065BE53"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.0s:*:*:*:*:*:*:*","matchCriteriaId":"A0E5BB91-B5E7-4961-87DC-26596E5EDED7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.1as:*:*:*:*:*:*:*","matchCriteriaId":"AC72AA6D-9E18-49F7-95CA-A4A5D7A60E4E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.1s:*:*:*:*:*:*:*","matchCriteriaId":"D3822447-EB80-4DF2-B7F2-471F55BA99C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.2as:*:*:*:*:*:*:*","matchCriteriaId":"BA0B441A-3A09-4A58-8A40-D463003A50BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.2bs:*:*:*:*:*:*:*","matchCriteriaId":"51E1A64A-204D-4567-A2DC-EFEB2AE62B54"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.2s:*:*:*:*:*:*:*","matchCriteriaId":"970FD986-6D0E-441C-9BF3-C66A25763A7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.3as:*:*:*:*:*:*:*","matchCriteriaId":"7EEFD3AD-EFA2-4808-801E-B98E4C63AA76"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.3s:*:*:*:*:*:*:*","matchCriteriaId":"1826C997-6D5D-480E-A12E-3048B6C61216"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4as:*:*:*:*:*:*:*","matchCriteriaId":"5D136C95-F837-49AD-82B3-81C25F68D0EB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4bs:*:*:*:*:*:*:*","matchCriteriaId":"C35B3F96-B342-4AFC-A511-7A735B961ECD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4cs:*:*:*:*:*:*:*","matchCriteriaId":"9E203E52-0A3A-4910-863D-05FEF537C9B8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4ds:*:*:*:*:*:*:*","matchCriteriaId":"DED2D791-4142-4B9E-8401-6B63357536B0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4es:*:*:*:*:*:*:*","matchCriteriaId":"4B6442B5-A87E-493B-98D5-F954B5A001BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4gs:*:*:*:*:*:*:*","matchCriteriaId":"8794DA1D-9EE8-4139-B8E9-061A73CFD5F5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.4s:*:*:*:*:*:*:*","matchCriteriaId":"9FBEF4B2-EA12-445A-823E-E0E5343A405E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.5as:*:*:*:*:*:*:*","matchCriteriaId":"51EAC484-1C4F-4CA8-B8E1-6EE0E9497A4A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.5bs:*:*:*:*:*:*:*","matchCriteriaId":"E0BC5E30-71D2-4C17-A1BA-0850A9BC7D50"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.5s:*:*:*:*:*:*:*","matchCriteriaId":"844E7CEC-5CB6-47AE-95F7-75693347C08E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.6bs:*:*:*:*:*:*:*","matchCriteriaId":"E50A67CE-EB1C-4BFA-AB40-BCF6CDF168BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.6s:*:*:*:*:*:*:*","matchCriteriaId":"147A245E-9A5D-4178-A1AC-5B0D41C3B730"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.7as:*:*:*:*:*:*:*","matchCriteriaId":"169D71B3-1CCE-4526-8D91-048212EEDF08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.7bs:*:*:*:*:*:*:*","matchCriteriaId":"27F66514-B9C4-422E-B68E-406608302E03"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.7s:*:*:*:*:*:*:*","matchCriteriaId":"E2438157-4D9C-4E16-9D2A-759A8F6CDDE2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.8s:*:*:*:*:*:*:*","matchCriteriaId":"12ECC01E-E59F-4AED-AE51-7EE6B5E717E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.9s:*:*:*:*:*:*:*","matchCriteriaId":"ABC524BA-544C-49B9-A9D6-800D25556532"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.10as:*:*:*:*:*:*:*","matchCriteriaId":"02A07FC8-5649-4A64-8B94-507524FE4551"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.10bs:*:*:*:*:*:*:*","matchCriteriaId":"A2E619BC-F1A2-45A7-BC12-E716BAC81376"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16.10s:*:*:*:*:*:*:*","matchCriteriaId":"2BC99316-75AC-45EB-B6BB-DB014ED08ECA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.16s:*:*:*:*:*:*:*","matchCriteriaId":"C8BC0EDB-C32A-42EA-9FE9-FF7F39C83211"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.0s:*:*:*:*:*:*:*","matchCriteriaId":"12793F39-13C4-4DBC-9B78-FE361BDDF89D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.1as:*:*:*:*:*:*:*","matchCriteriaId":"1AEF94C7-CEE6-4696-9F1D-549639A831C2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.1s:*:*:*:*:*:*:*","matchCriteriaId":"876767C7-0196-4226-92B1-DDE851B53655"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.2s:*:*:*:*:*:*:*","matchCriteriaId":"0141D67B-632F-48ED-8837-4CC799616C57"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.3s:*:*:*:*:*:*:*","matchCriteriaId":"141FFB5E-EA72-4FC1-B87A-B5E2D5FCFE2A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17.4s:*:*:*:*:*:*:*","matchCriteriaId":"FE444B39-D025-471B-835E-88671212ACAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.17s:*:*:*:*:*:*:*","matchCriteriaId":"3C61D3C1-3A56-49B3-BF68-6E103C5654AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.0as:*:*:*:*:*:*:*","matchCriteriaId":"BE390091-D382-4436-BBB4-D4C33E4F6714"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.0s:*:*:*:*:*:*:*","matchCriteriaId":"EE81AA43-88D4-4EFC-B8F6-A41EFF437819"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.0sp:*:*:*:*:*:*:*","matchCriteriaId":"C18E6308-7A34-43E3-9AD8-5FB52B31ACB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1asp:*:*:*:*:*:*:*","matchCriteriaId":"A667AEC6-57E3-4D67-A02E-F0BAEBCE16DD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1bsp:*:*:*:*:*:*:*","matchCriteriaId":"80EE163D-D9EC-46A1-826A-54F8F3A3FFBE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1csp:*:*:*:*:*:*:*","matchCriteriaId":"3CE4CFE4-C00F-4FAE-8FDF-F6C92E92838D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1gsp:*:*:*:*:*:*:*","matchCriteriaId":"CE3170E3-0BCC-4C5F-8E6C-5E91E8C4E7A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1hsp:*:*:*:*:*:*:*","matchCriteriaId":"3CCDB353-DD15-4C91-AD2A-73649C012E08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1isp:*:*:*:*:*:*:*","matchCriteriaId":"7D7DAAE1-BB3F-4FBA-A6ED-3BABC9196C1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1s:*:*:*:*:*:*:*","matchCriteriaId":"6BEBCBF7-D1CF-488F-BB3E-F864F901A96A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.1sp:*:*:*:*:*:*:*","matchCriteriaId":"06BBE88E-FEFB-4B90-91D1-4F053FA0EA47"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.2asp:*:*:*:*:*:*:*","matchCriteriaId":"0D43FA49-1F9D-4FD0-AF18-6E9AB6DF702F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.2s:*:*:*:*:*:*:*","matchCriteriaId":"BD8CCA19-1D1C-45C0-A1A0-CED5885AD580"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.2sp:*:*:*:*:*:*:*","matchCriteriaId":"014224BF-926E-470C-A133-84036D8AD533"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.3asp:*:*:*:*:*:*:*","matchCriteriaId":"10B0DE46-C4C4-4DA1-A4CD-9627F13FED3B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.3bsp:*:*:*:*:*:*:*","matchCriteriaId":"B58E818D-03BB-4FE4-946B-B967E9764DA3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.3s:*:*:*:*:*:*:*","matchCriteriaId":"4063CCF8-19BE-4411-B71B-147BB146700B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.3sp:*:*:*:*:*:*:*","matchCriteriaId":"2DE8E0D1-E4AD-4648-BCF0-AE11B93D22B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.4s:*:*:*:*:*:*:*","matchCriteriaId":"186ADB50-A4D4-4B32-884D-3195E7770346"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.4sp:*:*:*:*:*:*:*","matchCriteriaId":"334F278A-CFEB-4145-9D8D-EFC36A1BF258"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.5sp:*:*:*:*:*:*:*","matchCriteriaId":"3B76F26E-7B1C-4894-8CDD-4BA1243E4EAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.6sp:*:*:*:*:*:*:*","matchCriteriaId":"B5FB99D7-CDA9-4C3E-9DBB-3AC1CEBA4D90"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.7sp:*:*:*:*:*:*:*","matchCriteriaId":"63D05DBA-D3F0-492B-9976-54A7E46F315E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.8asp:*:*:*:*:*:*:*","matchCriteriaId":"596E09DB-97B1-4DCE-AC5E-18CC9ACCAFB8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18.9sp:*:*:*:*:*:*:*","matchCriteriaId":"CB2D4A7B-E0B7-4D65-B242-75934490D703"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18s:*:*:*:*:*:*:*","matchCriteriaId":"3C875016-4D4C-4E24-ADB2-2D767CD77EE1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.18sp:*:*:*:*:*:*:*","matchCriteriaId":"61FE489A-90DC-43E2-973A-34F87C6FB7A0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.1:*:*:*:*:*:*:*","matchCriteriaId":"B29D7E0C-82F6-408F-AC2D-B5A79CCD576E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.1.1:*:*:*:*:*:*:*","matchCriteriaId":"0ED5527C-A638-4E20-9928-099E32E17743"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.1.2:*:*:*:*:*:*:*","matchCriteriaId":"1A685A9A-235D-4D74-9D6C-AC49E75709CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.1.3:*:*:*:*:*:*:*","matchCriteriaId":"43052998-0A27-4E83-A884-A94701A3F4CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.2:*:*:*:*:*:*:*","matchCriteriaId":"47C86D01-6B26-4BAB-8B61-598823230DC7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.2.1:*:*:*:*:*:*:*","matchCriteriaId":"89526731-B712-43D3-B451-D7FC503D2D65"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.2.2:*:*:*:*:*:*:*","matchCriteriaId":"302933FE-4B6A-48A3-97F0-4B943251B717"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3:*:*:*:*:*:*:*","matchCriteriaId":"16618E57-94B9-4DB7-BCE0-2D81CB89F0BC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.1:*:*:*:*:*:*:*","matchCriteriaId":"296636F1-9242-429B-8472-90352C056106"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.1a:*:*:*:*:*:*:*","matchCriteriaId":"77993343-0394-413F-ABF9-C1215E9AD800"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.2:*:*:*:*:*:*:*","matchCriteriaId":"283971DD-DD58-4A76-AC2A-F316534ED416"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.3:*:*:*:*:*:*:*","matchCriteriaId":"A8F324A5-4830-482E-A684-AB3B6594CEAE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.4:*:*:*:*:*:*:*","matchCriteriaId":"E8120196-8648-49D0-8262-CD4C9C90C37A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.5:*:*:*:*:*:*:*","matchCriteriaId":"33E7CCE2-C685-4019-9B55-B3BECB3E5F76"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.5b:*:*:*:*:*:*:*","matchCriteriaId":"0699DD6E-BA74-4814-93AB-300329C9D032"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.6:*:*:*:*:*:*:*","matchCriteriaId":"C2E2D781-2684-45F1-AC52-636572A0DCA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.7:*:*:*:*:*:*:*","matchCriteriaId":"479FB47B-AF2E-4FCB-8DE0-400BF325666C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.8:*:*:*:*:*:*:*","matchCriteriaId":"DF2B4C78-5C31-4F3D-9639-305E15576E79"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.9:*:*:*:*:*:*:*","matchCriteriaId":"2C09F0A2-B21F-40ED-A6A8-9A29D6E1C6A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.10:*:*:*:*:*:*:*","matchCriteriaId":"32BA13F4-EF9C-4368-B8B1-9FD9FAF5CEFF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.3.11:*:*:*:*:*:*:*","matchCriteriaId":"13CB889F-B064-4CAC-99AC-903745ACA566"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.4:*:*:*:*:*:*:*","matchCriteriaId":"4CD8EAF9-6AB1-48B3-A690-6A5BD715FBD9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.4.1:*:*:*:*:*:*:*","matchCriteriaId":"77E8AF15-AB46-4EAB-8872-8C55E8601599"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.4.2:*:*:*:*:*:*:*","matchCriteriaId":"957318BE-55D4-4585-AA52-C813301D01C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.4.3:*:*:*:*:*:*:*","matchCriteriaId":"8F11B703-8A0F-47ED-AA70-951FF78B94A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5:*:*:*:*:*:*:*","matchCriteriaId":"6B25F62B-E32C-47F7-AFF0-586D5FFA5C96"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5.1:*:*:*:*:*:*:*","matchCriteriaId":"FE7B2557-821D-4E05-B5C3-67192573D97D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5.1a:*:*:*:*:*:*:*","matchCriteriaId":"5EE6EC32-51E4-43A3-BFB9-A0D842D08E87"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5.1b:*:*:*:*:*:*:*","matchCriteriaId":"187F699A-AF2F-42B0-B855-27413140C384"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5.2:*:*:*:*:*:*:*","matchCriteriaId":"7E0B905E-4D92-4FD6-B2FF-41FF1F59A948"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.5.3:*:*:*:*:*:*:*","matchCriteriaId":"62EDEC28-661E-42EF-88F0-F62D0220D2E5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6:*:*:*:*:*:*:*","matchCriteriaId":"68E034CE-4283-4F2B-BB05-395316FAB884"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.1:*:*:*:*:*:*:*","matchCriteriaId":"F821EBD7-91E2-4460-BFAF-18482CF6CB8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.2:*:*:*:*:*:*:*","matchCriteriaId":"E36D2D24-8F63-46DE-AC5F-8DE33332EBC6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.3:*:*:*:*:*:*:*","matchCriteriaId":"C9B825E6-5929-4890-BDBA-4CF4BD2314C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.4:*:*:*:*:*:*:*","matchCriteriaId":"65020120-491D-46CD-8C73-974B6F4C11E6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.4a:*:*:*:*:*:*:*","matchCriteriaId":"7ADDCD0A-6168-45A0-A885-76CC70FE2FC7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.4s:*:*:*:*:*:*:*","matchCriteriaId":"3F35C623-6043-43A6-BBAA-478E185480CF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.5:*:*:*:*:*:*:*","matchCriteriaId":"D83E34F4-F4DD-49CC-9C95-93F9D4D26B42"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.5a:*:*:*:*:*:*:*","matchCriteriaId":"D2833EAE-94C8-4279-A244-DDB6E2D15DC2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.5b:*:*:*:*:*:*:*","matchCriteriaId":"4B688E46-5BAD-4DEC-8B13-B184B141B169"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.6:*:*:*:*:*:*:*","matchCriteriaId":"8C8F50DB-3A80-4D89-9F7B-86766D37338B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.7:*:*:*:*:*:*:*","matchCriteriaId":"DBFC70A2-87BC-4898-BCF3-57F7B1DD5F10"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.7a:*:*:*:*:*:*:*","matchCriteriaId":"3F13F583-F645-4DF0-A075-B4F19D71D128"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.8:*:*:*:*:*:*:*","matchCriteriaId":"CB8DA556-ABF3-48D0-95B8-E57DBE1B5A09"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.9:*:*:*:*:*:*:*","matchCriteriaId":"01B53828-C520-4845-9C14-6C7D50EAA3A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.10:*:*:*:*:*:*:*","matchCriteriaId":"20F23DB7-6F8E-470A-9B43-0ACEEF331C38"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7:*:*:*:*:*:*:*","matchCriteriaId":"A74D09C7-3DF0-4686-9E9B-543A03A27DFB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.1:*:*:*:*:*:*:*","matchCriteriaId":"623BF701-ADC9-4F24-93C5-043A6A7FEF5F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.1a:*:*:*:*:*:*:*","matchCriteriaId":"E5311FBE-12BF-41AC-B8C6-D86007834863"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.1b:*:*:*:*:*:*:*","matchCriteriaId":"52FB055E-72F9-4CB7-A51D-BF096BD1A55D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.2:*:*:*:*:*:*:*","matchCriteriaId":"0FBD681F-7969-42BE-A47E-7C287755DCB5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.3:*:*:*:*:*:*:*","matchCriteriaId":"98255E6F-3056-487D-9157-403836EFB9D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.7.4:*:*:*:*:*:*:*","matchCriteriaId":"521ACFB0-4FB2-44DB-AD7B-C27F9059DE66"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8:*:*:*:*:*:*:*","matchCriteriaId":"58533CE2-9C6D-4193-888E-1C9C37B0084F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1:*:*:*:*:*:*:*","matchCriteriaId":"57D4F634-03D5-4D9F-901C-7E9CE45F2F38"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1a:*:*:*:*:*:*:*","matchCriteriaId":"4463A1D1-E169-4F0B-91B2-FA126BB444CB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1b:*:*:*:*:*:*:*","matchCriteriaId":"D97F69C3-CAA6-491C-A0B6-6DC12B5AB472"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1c:*:*:*:*:*:*:*","matchCriteriaId":"CDD58C58-1B0C-4A71-8C02-F555CEF9C253"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1d:*:*:*:*:*:*:*","matchCriteriaId":"96852D16-AF50-4C70-B125-D2349E6765D7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1e:*:*:*:*:*:*:*","matchCriteriaId":"A15B882A-BA60-4932-A55E-F4A798B30EEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.1s:*:*:*:*:*:*:*","matchCriteriaId":"5C9C585C-A6EC-4385-B915-046C110BF95F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.2:*:*:*:*:*:*:*","matchCriteriaId":"5EC2EE60-4A07-4D92-B9BC-BF07CF4F2BE9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.8.3:*:*:*:*:*:*:*","matchCriteriaId":"47DBE4ED-1CD8-4134-9B33-17A91F44F17B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9:*:*:*:*:*:*:*","matchCriteriaId":"4D42A82B-7241-4564-BCC1-9C4E7EB18881"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1:*:*:*:*:*:*:*","matchCriteriaId":"119A964D-ABC8-424D-8097-85B832A833BD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1a:*:*:*:*:*:*:*","matchCriteriaId":"0375BF9E-D04B-4E5B-9051-536806ECA44E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1b:*:*:*:*:*:*:*","matchCriteriaId":"2266E5A2-B3F6-4389-B8E2-42CB845EC7F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1c:*:*:*:*:*:*:*","matchCriteriaId":"012A6CF7-9104-4882-9C95-E6D4458AB778"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1d:*:*:*:*:*:*:*","matchCriteriaId":"5AF5214D-9257-498F-A3EB-C4EC18E2FEB2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.1s:*:*:*:*:*:*:*","matchCriteriaId":"78DE7780-4E8B-4BB6-BDEB-58032EC65851"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2:*:*:*:*:*:*:*","matchCriteriaId":"F29CEE37-4044-4A3C-9685-C9C021FD346A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2a:*:*:*:*:*:*:*","matchCriteriaId":"3DC5BB06-100F-42C9-8CEB-CC47FD26DDF3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.2s:*:*:*:*:*:*:*","matchCriteriaId":"5292764A-7D1C-4E04-86EF-809CB68EDD25"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3:*:*:*:*:*:*:*","matchCriteriaId":"E1FDA817-3A50-4B9E-8F4E-F613BDB3E9EE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3a:*:*:*:*:*:*:*","matchCriteriaId":"1E16D266-108F-4F8A-998D-F1CA25F2EAAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3h:*:*:*:*:*:*:*","matchCriteriaId":"F84AE35F-D016-4B8F-8FE2-C2ACB200DFED"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*","matchCriteriaId":"41D55481-C80E-4400-9C3D-9F6B1F7F13CE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.4:*:*:*:*:*:*:*","matchCriteriaId":"E4BF9829-F80E-4837-A420-39B291C4E17B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.4c:*:*:*:*:*:*:*","matchCriteriaId":"D07F9539-CFBE-46F7-9F5E-93A68169797D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.5:*:*:*:*:*:*:*","matchCriteriaId":"F5AB80E7-0714-44ED-9671-12C877B36A1E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.5f:*:*:*:*:*:*:*","matchCriteriaId":"10182B94-6831-461E-B0FC-9476EAB6EBEF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.6:*:*:*:*:*:*:*","matchCriteriaId":"961F8312-31B9-44E7-8858-EF8E2134F447"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.7:*:*:*:*:*:*:*","matchCriteriaId":"3D62EE1B-9A59-406C-B7DF-91B495F3ECFE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.8:*:*:*:*:*:*:*","matchCriteriaId":"79CF8D4E-F82A-469C-A8C2-0C203A800A05"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.9.8a:*:*:*:*:*:*:*","matchCriteriaId":"D5F9A8BD-75C5-4237-8B2C-027298300D0B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10:*:*:*:*:*:*:*","matchCriteriaId":"7B144F75-544E-48B4-82C8-08892C96C126"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*","matchCriteriaId":"DB6BD18B-B9BD-452F-986E-16A6668E46B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1a:*:*:*:*:*:*:*","matchCriteriaId":"D136D2BC-FFB5-4912-A3B1-BD96148CB9A5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1b:*:*:*:*:*:*:*","matchCriteriaId":"A22256FE-431C-4AD9-9E7F-7EAC2D81B1B7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1c:*:*:*:*:*:*:*","matchCriteriaId":"5CD5B3AB-27C2-4055-A3B7-0112D089FDA4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1d:*:*:*:*:*:*:*","matchCriteriaId":"04081A51-E08F-4114-9276-584E836181D3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*","matchCriteriaId":"ADED0D82-2A4D-4235-BFAC-5EE2D862B652"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1f:*:*:*:*:*:*:*","matchCriteriaId":"62A46516-CEB7-48D4-879B-341963A1FA31"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1g:*:*:*:*:*:*:*","matchCriteriaId":"D6EF98FA-6DF9-4935-9639-143E08462BC4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1s:*:*:*:*:*:*:*","matchCriteriaId":"763664F5-E6CD-4936-B2F8-C5E2D5EA7BB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.2:*:*:*:*:*:*:*","matchCriteriaId":"0A443E93-6C4B-4F86-BA7C-7C2A929E795A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.3:*:*:*:*:*:*:*","matchCriteriaId":"6ECEDD9D-6517-44BA-A95F-D1D5488C0E41"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11:*:*:*:*:*:*:*","matchCriteriaId":"3D857D47-1A92-42E1-86FC-B3EF8D512877"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*","matchCriteriaId":"E91F8704-6DAD-474A-84EA-04E4AF7BB9B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*","matchCriteriaId":"314C7763-A64D-4023-9F3F-9A821AE4151F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1b:*:*:*:*:*:*:*","matchCriteriaId":"5820D71D-FC93-45AA-BC58-A26A1A39C936"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*","matchCriteriaId":"FC1C85DD-69CC-4AA8-B219-651D57FC3506"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*","matchCriteriaId":"DB26AE0F-85D8-4EAB-B9BD-457DD81FF0FE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*","matchCriteriaId":"B53E377A-0296-4D7A-B97C-576B0026543D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12:*:*:*:*:*:*:*","matchCriteriaId":"4B868980-66AB-4321-85CC-5B492DDC1694"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*","matchCriteriaId":"C98DED36-D4B5-48D6-964E-EEEE97936700"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1a:*:*:*:*:*:*:*","matchCriteriaId":"CD98C9E8-3EA6-4160-970D-37C389576516"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*","matchCriteriaId":"C8BEFEDA-B01A-480B-B03D-7ED5D08E4B67"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*","matchCriteriaId":"9027A528-2588-4C06-810B-5BB313FE4323"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1t:*:*:*:*:*:*:*","matchCriteriaId":"7745ED34-D59D-49CC-B174-96BCA03B3374"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1w:*:*:*:*:*:*:*","matchCriteriaId":"19AF4CF3-6E79-4EA3-974D-CD451A192BA9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1x:*:*:*:*:*:*:*","matchCriteriaId":"313BD54C-073C-4F27-82D5-C99EFC3A20F7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1y:*:*:*:*:*:*:*","matchCriteriaId":"93B96E01-3777-4C33-9225-577B469A6CE5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1z:*:*:*:*:*:*:*","matchCriteriaId":"65FC3CC1-CF4F-4A2D-A500-04395AFE8B47"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1z1:*:*:*:*:*:*:*","matchCriteriaId":"D18B32E3-6B33-4E3D-879A-82E2F0BFC906"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1z2:*:*:*:*:*:*:*","matchCriteriaId":"46E37204-FC9A-4397-AFA4-9CAC7A116D55"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2:*:*:*:*:*:*:*","matchCriteriaId":"E5019B59-508E-40B0-9C92-2C26F58E2FBE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2a:*:*:*:*:*:*:*","matchCriteriaId":"443D78BA-A3DA-4D1F-A4DF-2F426DC6B841"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*","matchCriteriaId":"1986DB1F-AD0A-42FE-8EC8-F18BA1AD4F99"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*","matchCriteriaId":"3C6FB4DC-814D-49D2-BBE2-3861AE985A1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*","matchCriteriaId":"D5750264-2990-4942-85F4-DB9746C5CA2B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.3a:*:*:*:*:*:*:*","matchCriteriaId":"02352FD8-2A7B-41BD-9E4A-F312ABFDF3EF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*","matchCriteriaId":"B9173AD6-6658-4267-AAA7-D50D0B657528"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*","matchCriteriaId":"7F02EE9D-45B1-43D6-B05D-6FF19472216B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.4a:*:*:*:*:*:*:*","matchCriteriaId":"1C1DBBCD-4C5A-43BB-8FB0-6F1AF99ED0D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.5:*:*:*:*:*:*:*","matchCriteriaId":"8FCB9440-F470-45D1-AAFA-01FB5D76B600"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.5a:*:*:*:*:*:*:*","matchCriteriaId":"3F66ECFE-B631-47AE-995F-024A4E586A85"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.5b:*:*:*:*:*:*:*","matchCriteriaId":"3BBFDD70-7AF3-47AE-94CA-56C19F2D6234"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1:*:*:*:*:*:*:*","matchCriteriaId":"117E7BD4-C68E-4FCB-9435-EE94252E1E23"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*","matchCriteriaId":"E306B09C-CB48-4067-B60C-5F738555EEAC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1a:*:*:*:*:*:*:*","matchCriteriaId":"CD446C51-E713-4E46-8328-0A0477D140D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*","matchCriteriaId":"4FF0DD16-D76A-45EA-B01A-20C71AEFA3B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*","matchCriteriaId":"4BDD0CEC-4A19-438D-B2A1-8664A1D8F3C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*","matchCriteriaId":"89369318-2E83-489F-B872-5F2E247BBF8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.3:*:*:*:*:*:*:*","matchCriteriaId":"8B4D4659-A304-459F-8AB3-ED6D84B44C0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2:*:*:*:*:*:*:*","matchCriteriaId":"7FBAAAE4-E771-40BC-8B58-AC2AA2DCD784"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*","matchCriteriaId":"4B7EE7C7-D6C1-4C35-8C80-EAF3FC7E7EFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1a:*:*:*:*:*:*:*","matchCriteriaId":"B51FA707-8DB1-4596-9122-D4BFEF17F400"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1r:*:*:*:*:*:*:*","matchCriteriaId":"C04DF35A-1B6F-420A-8D84-74EB41BF3700"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1v:*:*:*:*:*:*:*","matchCriteriaId":"211CC9B2-6108-4C50-AB31-DC527C43053E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.2:*:*:*:*:*:*:*","matchCriteriaId":"75CCB5F1-27F5-4FF9-8389-0A9ABCF7F070"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.3:*:*:*:*:*:*:*","matchCriteriaId":"08DCCBA3-82D2-4444-B5D3-E5FC58D024F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3:*:*:*:*:*:*:*","matchCriteriaId":"413FD75F-4032-4B42-B4F4-334DA834A380"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1:*:*:*:*:*:*:*","matchCriteriaId":"128F95D7-E49F-4B36-8F47-823C0298449E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1a:*:*:*:*:*:*:*","matchCriteriaId":"E21B3881-37E9-4C00-9336-12C9C28D1B61"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1w:*:*:*:*:*:*:*","matchCriteriaId":"E54599DB-A85E-4EEA-9985-2CBF90E28A08"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1x:*:*:*:*:*:*:*","matchCriteriaId":"4046C325-7EDB-4C95-AA98-541BEC8F9E0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1z:*:*:*:*:*:*:*","matchCriteriaId":"E5B70A3D-CBE1-4218-A7B4-F85741A57BD7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.2:*:*:*:*:*:*:*","matchCriteriaId":"2B270A04-9961-4E99-806B-441CD674AFBD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.2a:*:*:*:*:*:*:*","matchCriteriaId":"1360069D-0358-4746-8C3F-44C2A40988D7"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.3:*:*:*:*:*:*:*","matchCriteriaId":"C5DD2403-113B-4100-8BD4-90E1927E6648"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.3a:*:*:*:*:*:*:*","matchCriteriaId":"A35FFA44-9A59-4C20-9D86-C40B68BD5F77"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.4:*:*:*:*:*:*:*","matchCriteriaId":"DAF73937-BCE2-4BEF-B4B0-83212DA4A6C8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.4a:*:*:*:*:*:*:*","matchCriteriaId":"2DDB1E60-C2A9-4570-BE80-F3D478A53738"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.4b:*:*:*:*:*:*:*","matchCriteriaId":"9841799A-87E2-46AE-807A-824981EAB35A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.4c:*:*:*:*:*:*:*","matchCriteriaId":"0CEF022B-271F-4017-B74B-82748D5EBA01"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.5:*:*:*:*:*:*:*","matchCriteriaId":"6B2902D8-3A7B-4C47-9BC6-8CA4C580A346"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.5a:*:*:*:*:*:*:*","matchCriteriaId":"8871B890-78F4-4D9D-AEFF-6A393493C51E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4:*:*:*:*:*:*:*","matchCriteriaId":"3278E08C-E14F-4767-9731-40ECB10B7AAD"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.1:*:*:*:*:*:*:*","matchCriteriaId":"5A6B707B-4543-41F1-83DF-49A93BF56FB1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.1a:*:*:*:*:*:*:*","matchCriteriaId":"DC8F611B-D347-4A21-90E6-56CF4D8A35A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.1b:*:*:*:*:*:*:*","matchCriteriaId":"D9A92CE4-B4B0-4C14-AE11-8DFE511406F3"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.1c:*:*:*:*:*:*:*","matchCriteriaId":"298C82F9-79A6-4DB7-8432-8B3A6DA39620"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.2:*:*:*:*:*:*:*","matchCriteriaId":"274E3E6F-4280-4EAE-B102-1BE57FE1F1D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.4.2a:*:*:*:*:*:*:*","matchCriteriaId":"46B52A51-51DB-4A12-AB1D-8D9605226599"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.5:*:*:*:*:*:*:*","matchCriteriaId":"66C67D18-A719-45F6-9EB3-08B33294B362"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.5.1:*:*:*:*:*:*:*","matchCriteriaId":"938B0720-8CA7-43BA-9708-5CE9EC7A565A"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.5.1a:*:*:*:*:*:*:*","matchCriteriaId":"D4BE7166-DBD3-4CE6-A14A-725FE896B85E"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssh-excpt-dos-FzOBQTnk","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssh-excpt-dos-FzOBQTnk","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21618","sourceIdentifier":"secalert_us@oracle.com","published":"2022-10-18T21:15:12.757","lastModified":"2026-05-27T17:16:25.753","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: JGSS). Las versiones soportadas que están afectadas son Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 y 22.2.0. La vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de Kerberos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen del sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1 Puntuación Base 5.3 (Impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:*","matchCriteriaId":"71668668-8383-4366-A184-F26455271914"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"C99B4F5D-3784-42B8-89CA-CDD2AA86B80E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"05CB121D-1430-47CE-BF7B-9567A234C7D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:19:*:*:*:*:*:*:*","matchCriteriaId":"361979FB-5B05-46A5-A6A2-993B51DF9E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"DCF1C861-79F0-47F8-96E9-6AE0AEFDEC8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:19:*:*:*:*:*:*:*","matchCriteriaId":"435B90D6-F0BE-4451-867B-C31116D52A9C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndIncluding":"11.70.2","matchCriteriaId":"A0DA944C-4992-424D-BC82-474585DAC5DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"BB695329-036B-447D-BEB0-AA4D89D1D99C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:*","matchCriteriaId":"9323C11D-50C6-4356-A2FF-294F750906AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:*","matchCriteriaId":"DC373919-C38D-4E22-A52D-BA9074E88124"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:*","matchCriteriaId":"E7832CA7-569F-4C01-991C-F74F24CC2A01"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:*","matchCriteriaId":"F2878A5A-63FA-4681-8643-D47DA6E9011F"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:19.28:*:*:*:*:*:*:*","matchCriteriaId":"B394E478-B822-488E-B74B-F46C4DB2B1A5"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21619","sourceIdentifier":"secalert_us@oracle.com","published":"2022-10-18T21:15:12.810","lastModified":"2026-05-27T15:16:22.210","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Security). Las versiones soportadas que están afectadas son Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 y 22.2.0. Una vulnerabilidad difícil de explotar permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start o applets Java con sandbox, que cargan y ejecutan código no confiable (por ejemplo, código procedente de Internet) y que dependen del sandbox de Java para su seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1 Puntuación Base 3.7 (Impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.7:*:*:*:enterprise:*:*:*","matchCriteriaId":"0DDD4602-7175-4DB6-B9D9-E7CDF482D263"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:*","matchCriteriaId":"71668668-8383-4366-A184-F26455271914"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"C99B4F5D-3784-42B8-89CA-CDD2AA86B80E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"EC1EEFCE-432E-40EE-B547-A193896C4CA4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"FB70CB5F-AABC-4CF2-B17E-D9C8D1E22F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"C13BD2F4-05F5-44FD-A217-2049CA5E680B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"05CB121D-1430-47CE-BF7B-9567A234C7D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:19:*:*:*:*:*:*:*","matchCriteriaId":"361979FB-5B05-46A5-A6A2-993B51DF9E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"94F132CF-6D24-4E80-B959-7ED1F247C3D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"B472E91E-F08F-4CBB-8FDB-37F8EDFB602E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"99A04E21-5FCB-4DA7-873A-2FE3AA713669"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"DCF1C861-79F0-47F8-96E9-6AE0AEFDEC8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:19:*:*:*:*:*:*:*","matchCriteriaId":"435B90D6-F0BE-4451-867B-C31116D52A9C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndExcluding":"11.70.2","matchCriteriaId":"BA296F2F-233C-465A-AD39-3347DCB072B2"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.2:*:*:*:*:*:*:*","matchCriteriaId":"5BDD7AAB-2BF3-4E8C-BEE2-5217E2926C11"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"BB695329-036B-447D-BEB0-AA4D89D1D99C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_web_services_proxy:-:*:*:*:*:*:*:*","matchCriteriaId":"84007013-7E55-40E3-94F7-55C04D69AE3C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.56:*:*:*:*:*:*:*","matchCriteriaId":"285FB110-9501-4F23-BC21-B2EE1E1B82BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.64:*:*:*:*:*:*:*","matchCriteriaId":"FB77FECF-07E1-448E-86F2-DD78B443D7C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:*","matchCriteriaId":"9323C11D-50C6-4356-A2FF-294F750906AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:*","matchCriteriaId":"DC373919-C38D-4E22-A52D-BA9074E88124"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:*","matchCriteriaId":"E7832CA7-569F-4C01-991C-F74F24CC2A01"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:*","matchCriteriaId":"F2878A5A-63FA-4681-8643-D47DA6E9011F"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:19.28:*:*:*:*:*:*:*","matchCriteriaId":"B394E478-B822-488E-B74B-F46C4DB2B1A5"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21624","sourceIdentifier":"secalert_us@oracle.com","published":"2022-10-18T21:15:13.657","lastModified":"2026-05-27T17:16:25.927","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: JNDI). Las versiones soportadas que están afectadas son Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 y 22.2.0. Una vulnerabilidad difícil de explotar permite a un atacante no autenticado con acceso a la red por medio de múltiples protocolos comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen del sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el Componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1 Puntuación Base 3.7 (Impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-502"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.7:*:*:*:enterprise:*:*:*","matchCriteriaId":"0DDD4602-7175-4DB6-B9D9-E7CDF482D263"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:*","matchCriteriaId":"71668668-8383-4366-A184-F26455271914"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"C99B4F5D-3784-42B8-89CA-CDD2AA86B80E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"EC1EEFCE-432E-40EE-B547-A193896C4CA4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"FB70CB5F-AABC-4CF2-B17E-D9C8D1E22F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"C13BD2F4-05F5-44FD-A217-2049CA5E680B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"05CB121D-1430-47CE-BF7B-9567A234C7D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:19:*:*:*:*:*:*:*","matchCriteriaId":"361979FB-5B05-46A5-A6A2-993B51DF9E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"94F132CF-6D24-4E80-B959-7ED1F247C3D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"B472E91E-F08F-4CBB-8FDB-37F8EDFB602E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"99A04E21-5FCB-4DA7-873A-2FE3AA713669"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"DCF1C861-79F0-47F8-96E9-6AE0AEFDEC8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:19:*:*:*:*:*:*:*","matchCriteriaId":"435B90D6-F0BE-4451-867B-C31116D52A9C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndIncluding":"11.70.2","matchCriteriaId":"A0DA944C-4992-424D-BC82-474585DAC5DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"BB695329-036B-447D-BEB0-AA4D89D1D99C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_web_services_proxy:-:*:*:*:*:*:*:*","matchCriteriaId":"84007013-7E55-40E3-94F7-55C04D69AE3C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:6.49:*:*:*:*:*:*:*","matchCriteriaId":"DCB7D337-B3E6-4BCE-8249-0473D2DE08BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.56:*:*:*:*:*:*:*","matchCriteriaId":"285FB110-9501-4F23-BC21-B2EE1E1B82BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.64:*:*:*:*:*:*:*","matchCriteriaId":"FB77FECF-07E1-448E-86F2-DD78B443D7C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:*","matchCriteriaId":"9323C11D-50C6-4356-A2FF-294F750906AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:*","matchCriteriaId":"DC373919-C38D-4E22-A52D-BA9074E88124"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:*","matchCriteriaId":"E7832CA7-569F-4C01-991C-F74F24CC2A01"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:*","matchCriteriaId":"F2878A5A-63FA-4681-8643-D47DA6E9011F"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:19.28:*:*:*:*:*:*:*","matchCriteriaId":"B394E478-B822-488E-B74B-F46C4DB2B1A5"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-21626","sourceIdentifier":"secalert_us@oracle.com","published":"2022-10-18T21:15:13.770","lastModified":"2026-05-27T15:16:22.500","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Security). Las versiones soportadas que están afectadas son Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 y 22.2.0. Una vulnerabilidad fácilmente explotable permite a un atacante no autenticado con acceso a la red por medio de HTTPS comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en la capacidad no autorizada de causar una denegación parcial de servicio (DOS parcial) de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start con sandbox o applets Java con sandbox, que cargan y ejecutan código que no es confiable (por ejemplo, código que viene de Internet) y dependen del sandbox de Java para la seguridad. Esta vulnerabilidad también puede ser explotada mediante el uso de APIs en el componente especificado, por ejemplo, mediante un servicio web que suministra datos a las APIs. CVSS 3.1 Puntuación Base 5.3 (Impactos en la Disponibilidad). Vector CVSS: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-693"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.7:*:*:*:enterprise:*:*:*","matchCriteriaId":"0DDD4602-7175-4DB6-B9D9-E7CDF482D263"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:*","matchCriteriaId":"71668668-8383-4366-A184-F26455271914"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"C99B4F5D-3784-42B8-89CA-CDD2AA86B80E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"EC1EEFCE-432E-40EE-B547-A193896C4CA4"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"FB70CB5F-AABC-4CF2-B17E-D9C8D1E22F1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"C13BD2F4-05F5-44FD-A217-2049CA5E680B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update341:*:*:*:*:*:*","matchCriteriaId":"94F132CF-6D24-4E80-B959-7ED1F247C3D5"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*","matchCriteriaId":"B472E91E-F08F-4CBB-8FDB-37F8EDFB602E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"99A04E21-5FCB-4DA7-873A-2FE3AA713669"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndIncluding":"11.70.2","matchCriteriaId":"A0DA944C-4992-424D-BC82-474585DAC5DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"BB695329-036B-447D-BEB0-AA4D89D1D99C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_web_services_proxy:-:*:*:*:*:*:*:*","matchCriteriaId":"84007013-7E55-40E3-94F7-55C04D69AE3C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:6.49:*:*:*:*:*:*:*","matchCriteriaId":"DCB7D337-B3E6-4BCE-8249-0473D2DE08BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:7.56:*:*:*:*:*:*:*","matchCriteriaId":"285FB110-9501-4F23-BC21-B2EE1E1B82BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:8.64:*:*:*:*:*:*:*","matchCriteriaId":"FB77FECF-07E1-448E-86F2-DD78B443D7C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:*","matchCriteriaId":"9323C11D-50C6-4356-A2FF-294F750906AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:*","matchCriteriaId":"DC373919-C38D-4E22-A52D-BA9074E88124"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:*","matchCriteriaId":"E7832CA7-569F-4C01-991C-F74F24CC2A01"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ARF4QF4N3X5GSFHXUBWARGLISGKJ33R/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3QLQ7OD33W6LT3HWI7VYDFFJLV75Y73K/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HNGMDNIHAA73BEX6XPA2IMXJSGOKKYE6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PB3CIGOFG7CENUVVE4FFZT2HI5FO77XU/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-39399","sourceIdentifier":"secalert_us@oracle.com","published":"2022-10-18T21:15:14.730","lastModified":"2026-05-27T14:16:40.017","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)."},{"lang":"es","value":"Una vulnerabilidad en el producto Oracle Java SE, Oracle GraalVM Enterprise Edition de Oracle Java SE (componente: Networking). Las versiones soportadas que están afectadas son Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 y 22.2.0. Una vulnerabilidad difícil de explotar permite a un atacante no autenticado con acceso a la red por medio de HTTP comprometer a Oracle Java SE, Oracle GraalVM Enterprise Edition. Los ataques con éxito de esta vulnerabilidad pueden resultar en una actualización no autorizada, insertar o eliminar el acceso a algunos de los datos accesibles de Oracle Java SE, Oracle GraalVM Enterprise Edition. Nota: Esta vulnerabilidad es aplicada a las implantaciones de Java, normalmente en clientes que ejecutan aplicaciones Java Web Start o applets Java con sandbox, que cargan y ejecutan código no confiable (por ejemplo, código procedente de Internet) y que dependen del sandbox de Java para su seguridad. Esta vulnerabilidad no es aplicada a las implantaciones de Java, normalmente en servidores, que cargan y ejecutan únicamente código confiable (por ejemplo, código instalado por un administrador). CVSS 3.1 Puntuación Base 3.7 (Impactos en la Integridad). Vector CVSS: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)"}],"metrics":{"cvssMetricV31":[{"source":"secalert_us@oracle.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:20.3.7:*:*:*:enterprise:*:*:*","matchCriteriaId":"0DDD4602-7175-4DB6-B9D9-E7CDF482D263"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:21.3.3:*:*:*:enterprise:*:*:*","matchCriteriaId":"71668668-8383-4366-A184-F26455271914"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:graalvm:22.2.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"C99B4F5D-3784-42B8-89CA-CDD2AA86B80E"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"C13BD2F4-05F5-44FD-A217-2049CA5E680B"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"05CB121D-1430-47CE-BF7B-9567A234C7D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jdk:19:*:*:*:*:*:*:*","matchCriteriaId":"361979FB-5B05-46A5-A6A2-993B51DF9E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:11.0.16.1:*:*:*:*:*:*:*","matchCriteriaId":"99A04E21-5FCB-4DA7-873A-2FE3AA713669"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:17.0.4.1:*:*:*:*:*:*:*","matchCriteriaId":"DCF1C861-79F0-47F8-96E9-6AE0AEFDEC8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:oracle:jre:19:*:*:*:*:*:*:*","matchCriteriaId":"435B90D6-F0BE-4451-867B-C31116D52A9C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","matchCriteriaId":"80E516C0-98A4-4ADE-B69F-66A772E2BAAA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","matchCriteriaId":"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*","matchCriteriaId":"7EF6650C-558D-45C8-AE7D-136EE70CB6D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_insights_acquisition_unit:-:*:*:*:*:*:*:*","matchCriteriaId":"CCAA4004-9319-478C-9D55-0E8307F872F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_secure_agent:-:*:*:*:*:*:*:*","matchCriteriaId":"F0F202E8-97E6-4BBB-A0B6-4CA3F5803C08"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndIncluding":"11.70.2","matchCriteriaId":"A0DA944C-4992-424D-BC82-474585DAC5DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"0D9CC59D-6182-4B5E-96B5-226FCD343916"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"BB695329-036B-447D-BEB0-AA4D89D1D99C"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*","matchCriteriaId":"F1BE6C1F-2565-4E97-92AA-16563E5660A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*","matchCriteriaId":"5735E553-9731-4AAC-BCFF-989377F817B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:*","matchCriteriaId":"82E94B87-065E-475F-815C-F49978CE22FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:santricity_web_services_proxy:-:*:*:*:*:*:*:*","matchCriteriaId":"84007013-7E55-40E3-94F7-55C04D69AE3C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:11.58:*:*:*:*:*:*:*","matchCriteriaId":"9323C11D-50C6-4356-A2FF-294F750906AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:13.50:*:*:*:*:*:*:*","matchCriteriaId":"DC373919-C38D-4E22-A52D-BA9074E88124"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:15.42:*:*:*:*:*:*:*","matchCriteriaId":"E7832CA7-569F-4C01-991C-F74F24CC2A01"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:17.36:*:*:*:*:*:*:*","matchCriteriaId":"F2878A5A-63FA-4681-8643-D47DA6E9011F"},{"vulnerable":true,"criteria":"cpe:2.3:a:azul:zulu:19.28:*:*:*:*:*:*:*","matchCriteriaId":"B394E478-B822-488E-B74B-F46C4DB2B1A5"}]}]}],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"secalert_us@oracle.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"secalert_us@oracle.com"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"secalert_us@oracle.com","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"secalert_us@oracle.com","tags":["Patch","Vendor Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/37QDWJBGEPP65X43NXQTXQ7KASLUHON6/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EXSBV3W6EP6B7XJ63Z2FPVBH6HAPGJ5T/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202401-25","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20221028-0012/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.oracle.com/security-alerts/cpuoct2022.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-44702","sourceIdentifier":"secure@microsoft.com","published":"2022-12-13T19:15:14.540","lastModified":"2026-05-27T15:16:23.723","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Windows Terminal Remote Code Execution Vulnerability"},{"lang":"es","value":"Vulnerabilidad de ejecución remota de código en terminal de Windows."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:terminal:*:*:*:*:*:*:*:*","versionEndExcluding":"1.15.2874","matchCriteriaId":"1C3D37C4-7C03-4002-A77E-15721EF8F6AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*","matchCriteriaId":"21540673-614A-4D40-8BD7-3F07723803B0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:terminal:*:*:*:*:*:*:*:*","versionEndExcluding":"1.15.2874","matchCriteriaId":"1C3D37C4-7C03-4002-A77E-15721EF8F6AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:*:*","matchCriteriaId":"5200AF17-0458-4315-A9D6-06C8DF67C05B"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44702","source":"secure@microsoft.com"},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-44702","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2022-2601","sourceIdentifier":"secalert@redhat.com","published":"2022-12-14T21:15:10.190","lastModified":"2026-05-27T15:16:23.293","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism."},{"lang":"es","value":"Se encontró un desbordamiento del búfer en grub_font_construct_glyph(). Una fuente pf2 manipulada maliciosamente puede provocar un desbordamiento al calcular el valor max_glyph_size, asignando un búfer más pequeño de lo necesario para el glifo, lo que además provoca un desbordamiento del búfer y una escritura fuera de los límites basada en el heap. Un atacante puede utilizar esta vulnerabilidad para eludir el mecanismo de arranque seguro."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":6.0},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":6.0}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"},{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*","versionEndIncluding":"2.06","matchCriteriaId":"7E48B3B4-3F7F-4169-ABC8-448AA351276E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*","matchCriteriaId":"E30D0E6F-4AE8-4284-8716-991DFA48CC5D"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:9.0:*:*:*:*:*:*:*","matchCriteriaId":"4DDA3E5A-8754-4C48-9A27-E2415F8A6000"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.0:*:*:*:*:*:*:*","matchCriteriaId":"868A6ED7-44DD-44FF-8ADD-9971298A1175"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"6897676D-53F9-45B3-B27F-7FF9A4C58D33"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*","matchCriteriaId":"4DF2B9A2-8CA6-4EDF-9975-07265E363ED2"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*","matchCriteriaId":"7DA6A5AF-2EBE-4ED9-B312-DCD9D150D031"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.0:*:*:*:*:*:*:*","matchCriteriaId":"492DF629-16B8-4882-822D-A6897B03DD30"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"B09ACF2D-D83F-4A86-8185-9569605D8EE1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*","matchCriteriaId":"48C2E003-A71C-4D06-B8B3-F93160568182"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*","matchCriteriaId":"3921C1CF-A16D-4727-99AD-03EFFA7C91CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:9.0:*:*:*:*:*:*:*","matchCriteriaId":"BE1A81A1-63EC-431C-9CBC-8D28C15AB3E5"}]}]}],"references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0","source":"secalert@redhat.com","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202311-14","source":"secalert@redhat.com"},{"url":"https://security.netapp.com/advisory/ntap-20230203-0004/","source":"secalert@redhat.com"},{"url":"https://arstechnica.com/security/2024/08/a-patch-microsoft-spent-2-years-preparing-is-making-a-mess-for-some-linux-users/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202311-14","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://security.netapp.com/advisory/ntap-20230203-0004/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2022-3775","sourceIdentifier":"secalert@redhat.com","published":"2022-12-19T20:15:11.427","lastModified":"2026-05-27T14:16:40.190","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size. As consequence an attacker can craft an input which will lead to a out-of-bounds write into grub2's heap, leading to memory corruption and availability issues. Although complex, arbitrary code execution could not be discarded."},{"lang":"es","value":"Al representar ciertas secuencias Unicode, el código de fuente de grub2 no se valida correctamente si el ancho y alto del glifo informado están restringidos dentro del tamaño del mapa de bits. Como consecuencia, un atacante puede crear una entrada que provocará una escritura fuera de los límites en el montón de grub2, lo que provocará daños en la memoria y problemas de disponibilidad. Aunque es compleja, no se puede descartar la ejecución de código arbitrario."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*","versionEndIncluding":"2.06","matchCriteriaId":"7E48B3B4-3F7F-4169-ABC8-448AA351276E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"}]}]}],"references":[{"url":"https://access.redhat.com/security/cve/cve-2022-3775","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202311-14","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/cve-2022-3775","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.gentoo.org/glsa/202311-14","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2025-4526","sourceIdentifier":"cna@vuldb.com","published":"2025-05-11T01:15:52.000","lastModified":"2026-05-27T15:16:24.160","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was identified in Dígitro NGC Explorer up to 3.44.15/3.48.21. The affected element is an unknown function of the component Configuration Page. Such manipulation leads to missing password field masking. It is possible to launch the attack remotely. Upgrading to version 3.48.22 is sufficient to fix this issue. It is suggested to upgrade the affected component. The vendor was contacted early about this disclosure but did not respond in any way."},{"lang":"es","value":"Se encontró una vulnerabilidad clasificada como problemática en Dígitro NGC Explorer 3.44.15. Esta afecta a una parte desconocida de la página de configuración del componente. La manipulación provoca la omisión del enmascaramiento del campo de contraseña. Es posible iniciar el ataque puede ejecutarse en remoto. Se contactó al proveedor con antelación para informarle sobre esta vulnerabilidad, pero no respondió."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"},{"lang":"en","value":"CWE-549"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:digitro:ngc_explorer:3.44.15:*:*:*:*:*:*:*","matchCriteriaId":"E62990A8-47F0-4E03-9119-1980C3AB230E"}]}]}],"references":[{"url":"https://digitro.com/recomendacao-10-2026-ctir-gov/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/565307","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308271","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308271/cti","source":"cna@vuldb.com"},{"url":"https://www.gov.br/ctir/pt-br/assuntos/alertas-e-recomendacoes/recomendacoes/2026/recomendacao-10-2026","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2025-4527","sourceIdentifier":"cna@vuldb.com","published":"2025-05-11T03:15:24.740","lastModified":"2026-05-27T15:16:24.387","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A security flaw has been discovered in Dígitro NGC Explorer up to 3.44.15/3.48.21. The impacted element is an unknown function of the component Password Transmission Handler. Performing a manipulation results in client-side enforcement of server-side security. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitability is regarded as difficult. Upgrading to version 3.48.22 is sufficient to resolve this issue. Upgrading the affected component is recommended. The vendor was contacted early about this disclosure but did not respond in any way."},{"lang":"es","value":"Se ha detectado una vulnerabilidad en Dígitro NGC Explorer 3.44.15, clasificada como problemática. Esta vulnerabilidad afecta al código desconocido del componente \"Password Transmission Handler\". La manipulación permite la aplicación de la seguridad del servidor por parte del cliente. El ataque puede ejecutarse en remoto. Es un ataque de complejidad bastante alta. Parece difícil de explotar. Se contactó al proveedor con antelación para informarle sobre esta revelación, pero no respondió."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.9,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:P/I:N/A:N","baseScore":2.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":4.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-602"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:digitro:ngc_explorer:3.44.15:*:*:*:*:*:*:*","matchCriteriaId":"E62990A8-47F0-4E03-9119-1980C3AB230E"}]}]}],"references":[{"url":"https://digitro.com/recomendacao-10-2026-ctir-gov/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/565308","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308272","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308272/cti","source":"cna@vuldb.com"},{"url":"https://www.gov.br/ctir/pt-br/assuntos/alertas-e-recomendacoes/recomendacoes/2026/recomendacao-10-2026","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2025-4528","sourceIdentifier":"cna@vuldb.com","published":"2025-05-11T03:15:24.970","lastModified":"2026-05-27T15:16:24.577","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A weakness has been identified in Dígitro NGC Explorer up to 3.44.15/3.48.21. This affects an unknown function. Executing a manipulation can lead to session expiration. The attack can be launched remotely. Upgrading to version 3.48.22 mitigates this issue. It is recommended to upgrade the affected component. The vendor was contacted early about this disclosure but did not respond in any way."},{"lang":"es","value":"Se encontró una vulnerabilidad en Dígitro NGC Explorer hasta la versión 3.44.15, clasificada como problemática. Este problema afecta a algunos procesos desconocidos. La manipulación provoca la expiración de la sesión. El ataque podría iniciarse remotamente. Se contactó al proveedor con antelación para informarle sobre esta divulgación, pero no respondió."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:P/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-613"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:digitro:ngc_explorer:*:*:*:*:*:*:*:*","versionEndIncluding":"3.44.15","matchCriteriaId":"A2C70D15-FD05-44A3-AA64-A97D9A09F44F"}]}]}],"references":[{"url":"https://digitro.com/recomendacao-10-2026-ctir-gov/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/565309","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308273","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/308273/cti","source":"cna@vuldb.com"},{"url":"https://www.gov.br/ctir/pt-br/assuntos/alertas-e-recomendacoes/recomendacoes/2026/recomendacao-10-2026","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2025-48651","sourceIdentifier":"security@android.com","published":"2026-04-06T19:16:25.867","lastModified":"2026-05-27T18:16:21.333","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be restricted due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":4.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":1.4}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*","matchCriteriaId":"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26"}]}]}],"references":[{"url":"https://source.android.com/docs/security/bulletin/2026/2026-04-01","source":"security@android.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6297","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:38.470","lastModified":"2026-05-27T18:16:29.193","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/493628982","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6298","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:38.643","lastModified":"2026-05-27T18:16:29.373","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/495700484","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6303","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:39.483","lastModified":"2026-05-27T18:16:29.533","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/496282147","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6305","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:39.773","lastModified":"2026-05-27T18:16:29.690","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/496618639","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6310","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:40.530","lastModified":"2026-05-27T18:16:29.873","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/497969820","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6311","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:40.767","lastModified":"2026-05-27T18:16:30.057","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-457"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-457"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/498201025","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6316","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:41.580","lastModified":"2026-05-27T18:16:30.897","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/499384399","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6318","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:42.020","lastModified":"2026-05-27T18:16:31.050","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/495996858","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6319","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:42.203","lastModified":"2026-05-27T18:16:31.230","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:android:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"3628EF42-CD08-4B2E-94B5-1462E7E3FA85"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/499018889","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6358","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:42.363","lastModified":"2026-05-27T18:16:31.390","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Critical)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:android:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"3628EF42-CD08-4B2E-94B5-1462E7E3FA85"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/497724498","source":"chrome-cve-admin@google.com","tags":["Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6363","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-15T20:16:43.690","lastModified":"2026-05-27T18:16:31.533","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-843"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-843"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.101","matchCriteriaId":"571DC362-C7E4-4FA4-A493-9DD22A4DACC6"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html","source":"chrome-cve-admin@google.com","tags":["Vendor Advisory"]},{"url":"https://issues.chromium.org/issues/495751197","source":"chrome-cve-admin@google.com","tags":["Issue Tracking","Permissions Required"]}]}},{"cve":{"id":"CVE-2026-6921","sourceIdentifier":"chrome-cve-admin@google.com","published":"2026-04-23T18:16:30.790","lastModified":"2026-05-27T18:16:34.013","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":6.0}]},"weaknesses":[{"source":"chrome-cve-admin@google.com","type":"Primary","description":[{"lang":"en","value":"CWE-362"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*","versionEndExcluding":"147.0.7727.116","matchCriteriaId":"AB75176F-0FDC-47BF-A48D-D5F26FACD347"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*","matchCriteriaId":"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26"},{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_22.html","source":"chrome-cve-admin@google.com","tags":["Release Notes"]},{"url":"https://issues.chromium.org/issues/493315759","source":"chrome-cve-admin@google.com","tags":["Permissions Required","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-6785","sourceIdentifier":"security@mozilla.org","published":"2026-04-26T19:53:39.010","lastModified":"2026-05-27T18:16:33.827","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-416"},{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*","versionEndExcluding":"115.35.0","matchCriteriaId":"E69D71F5-CAAA-4F28-AB9F-9F898A52D506"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*","versionEndExcluding":"150.0","matchCriteriaId":"67B01D49-66FA-4C76-9EB4-2B8CD61FBEB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*","versionStartIncluding":"140.0","versionEndExcluding":"140.10.0","matchCriteriaId":"528443E0-C15A-4E70-9187-8E1BAAE84A42"},{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:esr:*:*:*","versionStartIncluding":"140.0","versionEndExcluding":"140.10.0","matchCriteriaId":"6A8A3284-C06C-4591-9548-5324BD91C4FC"}]}]}],"references":[{"url":"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1935995%2C1999158%2C2015952%2C2021909%2C2022026%2C2022041%2C2022088%2C2022276%2C2022335%2C2022338%2C2022373%2C2022597%2C2022874%2C2023276%2C2023544%2C2023551%2C2023599%2C2023608%2C2023814%2C2024233%2C2024239%2C2024241%2C2024242%2C2024250%2C2024251%2C2024343%2C2024422%2C2024425%2C2024440%2C2024442%2C2024446%2C2024458%2C2024463%2C2024478%2C2024650%2C2024653%2C2024654%2C2024655%2C2024656%2C2024661%2C2024662%2C2024668%2C2024919%2C2025278%2C2025349%2C2025350%2C2025354%2C2025360%2C2025363%2C2025370%2C2025379%2C2025381%2C2025399%2C2025400%2C2025403%2C2025407%2C2025415%2C2025420%2C2025427%2C2025429%2C2025430%2C2025479%2C2025489%2C2025493%2C2025497%2C2025502%2C2025515%2C2025517%2C2025526%2C2025609%2C2025948%2C2025949%2C2025951%2C2025953%2C2025955%2C2025962%2C2025969%2C2025970%2C2025971%2C2025973%2C2025976%2C2025977%2C2026280%2C2026285%2C2026293%2C2026296%2C2026310%2C2027237%2C2027260%2C2027268%2C2027277%2C2027284%2C2027291%2C2027293%2C2027298%2C2027330%2C2027342%2C2027345%2C2027359%2C2027365%2C2027378%2C2027754%2C2027959%2C2027962%2C2027964%2C2027971%2C2027974%2C2027979%2C2027982%2C2027995%2C2028001%2C2028267%2C2028268%2C2028275%2C2028288%2C2028290%2C2028291%2C2028528%2C2028551%2C2028627%2C2028879%2C2028889%2C2029061%2C2029071%2C2029283%2C2029296%2C2029314%2C2029323%2C2029411%2C2029423%2C2029424%2C2029425%2C2029427%2C2029436%2C2029440%2C2029449%2C2029450%2C2029458%2C2029462%2C2029468%2C2029472%2C2029690%2C2029707%2C2029708%2C2029728%2C2029802%2C2029896%2C2029906%2C2030106%2C2030118%2C2030123%2C2030135%2C2030230%2C2030320","source":"security@mozilla.org","tags":["Broken Link"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2026-30/","source":"security@mozilla.org","tags":["Vendor Advisory"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2026-31/","source":"security@mozilla.org","tags":["Vendor Advisory"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2026-32/","source":"security@mozilla.org","tags":["Vendor Advisory"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2026-33/","source":"security@mozilla.org","tags":["Vendor Advisory"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2026-34/","source":"security@mozilla.org","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-4802","sourceIdentifier":"secalert@redhat.com","published":"2026-05-11T14:16:31.550","lastModified":"2026-05-27T18:16:28.920","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the system logs user interface (UI). An attacker can inject shell metacharacters and command substitutions into these parameters, leading to the execution of arbitrary shell commands on the affected system. This could result in a complete system compromise."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.1,"impactScore":5.9}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2026:21390","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/errata/RHSA-2026:21394","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2026-4802","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451155","source":"secalert@redhat.com"},{"url":"https://github.com/cockpit-project/cockpit/blob/e204cd130/pkg/systemd/logsJournal.jsx#L206-L210","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2026/05/20/19","source":"af854a3a-2127-422b-91ae-364da2661108"}]}},{"cve":{"id":"CVE-2026-42348","sourceIdentifier":"security-advisories@github.com","published":"2026-05-12T18:17:24.700","lastModified":"2026-05-27T15:57:13.617","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"OpenTelemetry.OpAmp.Client is the OpAMP client for OpenTelemetry .NET. Prior to 0.2.0-alpha.1, when receiving responses from the OpAMP server over HTTP, the OpAMP client allocates an unbounded buffer to read all bytes from the server, with no upper-bound on the number of bytes consumed. This could cause memory exhaustion in the consuming application if the configured OpAMP server is attacker-controlled (or a network attacker can MitM the connection) and an extremely large body is returned in the response. This vulnerability is fixed in 0.2.0-alpha.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-789"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opentelemetry:opentelemetry.opamp.client:*:*:*:*:*:.net:*:*","versionEndExcluding":"0.2.0","matchCriteriaId":"9704A1E4-DB3B-47A9-94BF-468AF748FA9C"}]}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/pull/4116","source":"security-advisories@github.com","tags":["Issue Tracking"]},{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/security/advisories/GHSA-w2jh-77fq-7gp8","source":"security-advisories@github.com","tags":["Patch","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41315","sourceIdentifier":"security-advisories@github.com","published":"2026-05-14T19:16:35.127","lastModified":"2026-05-27T15:01:11.803","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"mdserver-web is a simple Linux panel. From 0.18.0 to 0.18.4, mdserver-web has a front-end unauthorized remote command execution vulnerability. Due to the lack of authentication on the /modify_crond and /start_task interfaces, it is possible to modify the default built-in scheduled tasks and start them, achieving RCE."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:midoks:mdserver-web:*:*:*:*:*:*:*:*","versionStartIncluding":"0.18.0","versionEndIncluding":"0.18.4","matchCriteriaId":"974F78B3-96B2-4A45-A12F-CFBDAABB65BC"}]}]}],"references":[{"url":"https://github.com/midoks/mdserver-web/security/advisories/GHSA-3h92-g9hr-xc25","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://github.com/midoks/mdserver-web/security/advisories/GHSA-3h92-g9hr-xc25","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2025-65954","sourceIdentifier":"security-advisories@github.com","published":"2026-05-18T20:16:36.980","lastModified":"2026-05-27T14:25:20.340","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. In versions below 6.3.1 and 7.0.0, the logout endpoint accepts a url query parameter to redirect to. casserver treats that url as trusted, and either (depending on configuration) redirects the browser there, or shows a \"you've been logged out\" page with a link to continue to that url. Impacted configs include 'enable_logout' => true, and 'skip_logout_page' -> true. This issue has been resolved in versions 6.3.1 and 7.0.0."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV30":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:simplesamlphp:simplesamlphp-module-casserver:*:*:*:*:*:*:*:*","versionEndExcluding":"6.3.1","matchCriteriaId":"2969E814-23D3-4806-8A0F-4524711297DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:simplesamlphp:simplesamlphp-module-casserver:7.0.0:rc1:*:*:*:*:*:*","matchCriteriaId":"05D41ED1-4CC7-4CC9-BCB7-717E12F6B596"},{"vulnerable":true,"criteria":"cpe:2.3:a:simplesamlphp:simplesamlphp-module-casserver:7.0.0:rc2:*:*:*:*:*:*","matchCriteriaId":"19B5B2BA-A49D-4ED8-B048-494B65490560"}]}]}],"references":[{"url":"https://github.com/simplesamlphp/simplesamlphp-module-casserver/commit/0462f50f00b3bb300d83067d11b74146a57bb8e0","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/simplesamlphp/simplesamlphp-module-casserver/commit/fb6c6f1c7b9e757c93c5c306e1d36405e64f6dc5","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/simplesamlphp/simplesamlphp-module-casserver/security/advisories/GHSA-cvrm-5hp6-h523","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://github.com/simplesamlphp/simplesamlphp-module-casserver/security/advisories/GHSA-cvrm-5hp6-h523","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-8491","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-19T23:16:58.740","lastModified":"2026-05-27T15:00:49.880","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing.\n\nThis issue affects Node View Permissions: from 0.0.0 before 1.7.0, from 2.0.0 before 2.0.1."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":3.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":1.4}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:adcisolutions:node_view_permissions:*:*:*:*:*:drupal:*:*","versionEndExcluding":"1.7","matchCriteriaId":"F92674C7-C0AA-4537-8CA0-8B155C33C03D"},{"vulnerable":true,"criteria":"cpe:2.3:a:adcisolutions:node_view_permissions:2.0.0:*:*:*:*:drupal:*:*","matchCriteriaId":"20F0D2D9-62CD-4763-9BD3-1BE4AA659F73"}]}]}],"references":[{"url":"https://www.drupal.org/sa-contrib-2026-034","source":"mlhess@drupal.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-8492","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-19T23:16:58.860","lastModified":"2026-05-27T15:15:45.333","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Modification of Assumed-Immutable Data (MAID) vulnerability in Drupal Translate Drupal with GTranslate allows Resource Location Spoofing.\n\nThis issue affects Translate Drupal with GTranslate: from 0.0.0 before 3.0.5."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-471"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gtranslate:gtranslate:*:*:*:*:*:drupal:*:*","versionEndExcluding":"3.0.5","matchCriteriaId":"418BC203-44F0-4F28-893F-641688F2AD23"}]}]}],"references":[{"url":"https://www.drupal.org/sa-contrib-2026-035","source":"mlhess@drupal.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-8493","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-19T23:16:58.987","lastModified":"2026-05-27T15:08:46.740","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation (\"Cross-site Scripting\") vulnerability in Drupal Colorbox Inline allows Cross-Site Scripting (XSS).\n\nThis issue affects Colorbox Inline: from 0.0.0 before 2.1.1."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:colorbox_inline_project:colorbox_inline:*:*:*:*:*:drupal:*:*","versionEndExcluding":"2.1.1","matchCriteriaId":"982E97B5-59F9-4AE5-A2F5-EA3BFB5FB8EC"}]}]}],"references":[{"url":"https://www.drupal.org/sa-contrib-2026-036","source":"mlhess@drupal.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-8495","sourceIdentifier":"mlhess@drupal.org","published":"2026-05-19T23:16:59.117","lastModified":"2026-05-27T15:14:11.787","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing.\n\nThis issue affects Date iCal: from 0.0.0 before 4.0.15."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"mlhess@drupal.org","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:date_ical_project:date_ical:*:*:*:*:*:drupal:*:*","versionEndExcluding":"4.0.15","matchCriteriaId":"727E2B77-26A0-4674-AC75-120CD924B2A7"}]}]}],"references":[{"url":"https://www.drupal.org/sa-contrib-2026-037","source":"mlhess@drupal.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-39821","sourceIdentifier":"security@golang.org","published":"2026-05-22T16:16:20.410","lastModified":"2026-05-27T14:16:46.150","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\"."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","baseScore":9.6,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":5.8}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-1289"}]}],"references":[{"url":"https://go.dev/cl/767220","source":"security@golang.org"},{"url":"https://go.dev/issue/78760","source":"security@golang.org"},{"url":"https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8","source":"security@golang.org"},{"url":"https://pkg.go.dev/vuln/GO-2026-5026","source":"security@golang.org"}]}},{"cve":{"id":"CVE-2026-39824","sourceIdentifier":"security@golang.org","published":"2026-05-22T20:16:33.057","lastModified":"2026-05-27T14:16:46.387","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"NewNTUnicodeString does not check for string length overflow. When provided with a string that overflows the maximum size of a NTUnicodeString (a 16-bit number of bytes), it returns a truncated string rather than an error."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-190"}]}],"references":[{"url":"https://go.dev/cl/770080","source":"security@golang.org"},{"url":"https://go.dev/issue/78916","source":"security@golang.org"},{"url":"https://groups.google.com/g/golang-announce/c/6MMI8Lj-Atg","source":"security@golang.org"},{"url":"https://pkg.go.dev/vuln/GO-2026-5024","source":"security@golang.org"}]}},{"cve":{"id":"CVE-2026-41069","sourceIdentifier":"security-advisories@github.com","published":"2026-05-22T21:16:43.327","lastModified":"2026-05-27T15:26:28.040","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a malformed HEIF sequence file can trigger an out-of-bounds read in core sequence parsing logic, causing DoS. A malformed file can have stco.entry_count == 0 (creating no chunks) while still passing validation because saio.entry_count == 0 matches, but with saiz.sample_count > 0 the SampleAuxInfoReader constructor still enters its loop. This leads to an out-of-bounds dereference on the empty chunks[0] in chunked mode."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"},{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:struktur:libheif:*:*:*:*:*:*:*:*","versionEndExcluding":"1.22.0","matchCriteriaId":"CB01CAAF-1D64-461B-8CC0-3CF2FBAC60A5"}]}]}],"references":[{"url":"https://github.com/strukturag/libheif/releases/tag/v1.22.0","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/strukturag/libheif/security/advisories/GHSA-p82x-fpmv-576r","source":"security-advisories@github.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://github.com/strukturag/libheif/security/advisories/GHSA-p82x-fpmv-576r","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41071","sourceIdentifier":"security-advisories@github.com","published":"2026-05-22T22:16:55.470","lastModified":"2026-05-27T15:25:32.657","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a crafted HEIF sequence file where the saiz box declares more samples than actually exist in the track's chunk table causes a heap-buffer-overflow (out-of-bounds read) in the SampleAuxInfoReader constructor. The SampleAuxInfoReader constructor iterates over saiz->get_num_samples() samples but doesn't validate that this count is consistent with the number of chunks in the chunks vector. When saiz declares more samples than the chunks cover, the loop increments current_chunk past chunks.size(), causing an out-of-bounds read on the chunks vector. The vulnerability is triggered during file parsing (heif_context_read_from_file) without any additional user interaction. Any application using libheif to open untrusted HEIF files is affected. This issue has been fixed in version 1.22.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"ACTIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:struktur:libheif:*:*:*:*:*:*:*:*","versionEndExcluding":"1.22.0","matchCriteriaId":"CB01CAAF-1D64-461B-8CC0-3CF2FBAC60A5"}]}]}],"references":[{"url":"https://github.com/strukturag/libheif/releases/tag/v1.22.0","source":"security-advisories@github.com","tags":["Product","Release Notes"]},{"url":"https://github.com/strukturag/libheif/security/advisories/GHSA-xj92-xjff-h8w3","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-23652","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:41.573","lastModified":"2026-05-27T17:01:18.480","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Improper neutralization of special elements used in a command ('command injection') in Microsoft Power Pages allows an unauthorized attacker to execute code over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:power_pages:-:*:*:*:*:*:*:*","matchCriteriaId":"DB98CB24-C129-4D49-B051-426877991091"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23652","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-33843","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:44.163","lastModified":"2026-05-27T16:50:43.063","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Authentication bypass using an alternate path or channel in Microsoft Azure Active Directory B2C allows an unauthorized attacker to elevate privileges over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:entra_id:-:*:*:*:*:*:*:*","matchCriteriaId":"D09E509F-AFF3-4991-877A-D197388E7AD4"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33843","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-35430","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:47.853","lastModified":"2026-05-27T16:48:19.967","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Authorization bypass through user-controlled key in Azure Privileged Identity Management (PIM) allows an authorized attacker to elevate privileges over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:azure_privileged_identity_management:-:*:*:*:*:*:*:*","matchCriteriaId":"6CC1E90A-03FE-4492-BD2A-D6765BFABFC6"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35430","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-40411","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:51.220","lastModified":"2026-05-27T16:47:30.840","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Improper input validation in Azure Virtual Network Gateway allows an authorized attacker to execute code over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:azure_virtual_network_gateway:-:*:*:*:*:*:*:*","matchCriteriaId":"7123554A-9C80-435F-815D-6F5D419E8005"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40411","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-40412","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:51.363","lastModified":"2026-05-27T16:37:15.763","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Unrestricted upload of file with dangerous type in Azure Orbital Spatio allows an unauthorized attacker to execute code over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:azure_orbital_spatio:-:*:*:*:*:*:*:*","matchCriteriaId":"7688D6B3-1C30-41D6-BB45-295E7E6AEB77"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40412","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-41090","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:52.500","lastModified":"2026-05-27T18:23:00.457","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.8}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:365_copilot:-:*:*:*:*:iphone_os:*:*","matchCriteriaId":"87BE1CC9-4319-44AB-B88A-16CF1DBE7444"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41090","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-42827","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:54.657","lastModified":"2026-05-27T16:27:19.580","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:365_copilot:-:*:*:*:*:*:*:*","matchCriteriaId":"E4A390D9-7457-430A-82CC-A24DA275BF06"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42827","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-47280","sourceIdentifier":"secure@microsoft.com","published":"2026-05-22T23:16:56.407","lastModified":"2026-05-27T16:14:33.873","vulnStatus":"Analyzed","cveTags":[{"sourceIdentifier":"secure@microsoft.com","tags":["exclusively-hosted-service"]}],"descriptions":[{"lang":"en","value":"Improper authentication in Azure Resource Manager (ARM) allows an unauthorized attacker to elevate privileges over a network."}],"metrics":{"cvssMetricV31":[{"source":"secure@microsoft.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"secure@microsoft.com","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:azure_resource_manager:-:*:*:*:*:*:*:*","matchCriteriaId":"48C0D61C-CC26-4E98-B9E9-F51DCCD8E93F"}]}]}],"references":[{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47280","source":"secure@microsoft.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2018-25357","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-23T19:16:56.033","lastModified":"2026-05-27T15:56:19.693","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the db_name parameter. Attackers can send a POST request to install/step1.php with malicious PHP code in the db_name parameter, then execute commands via the check.php endpoint using the cmd GET parameter."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dolibarr:dolibarr_erp\\/crm:*:*:*:*:*:*:*:*","versionEndIncluding":"7.0.3","matchCriteriaId":"C9AC14C2-44CA-4D44-806D-A8EF98E595A1"}]}]}],"references":[{"url":"https://dolibarr.org","source":"disclosure@vulncheck.com","tags":["Product"]},{"url":"https://github.com/Dolibarr/dolibarr","source":"disclosure@vulncheck.com","tags":["Product"]},{"url":"https://www.exploit-db.com/exploits/44964","source":"disclosure@vulncheck.com","tags":["Exploit","VDB Entry"]},{"url":"https://www.vulncheck.com/advisories/dolibarr-erp-crm-remote-code-evaluation-via-install-step1-php","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-45361","sourceIdentifier":"security@apache.org","published":"2026-05-25T10:16:15.087","lastModified":"2026-05-27T14:59:53.130","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Apache Airflow providers-google's `ComputeEngineSSHHook` disables SSH host-key verification by default, exposing SSH traffic between an Airflow worker and a Compute Engine VM to in-path network attackers who can intercept or modify the session. Users are advised to upgrade to `apache-airflow-providers-google` 22.0.0 or later."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-322"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:apache-airflow-providers-google:*:*:*:*:*:*:*:*","versionEndExcluding":"22.0.0","matchCriteriaId":"5CCD22EC-C835-4540-861D-9117925690B0"}]}]}],"references":[{"url":"https://github.com/apache/airflow/pull/66746","source":"security@apache.org","tags":["Issue Tracking","Patch"]},{"url":"https://lists.apache.org/thread/3lpj7ppwxp7jtp81rnxk75xvln7qd7h2","source":"security@apache.org","tags":["Mailing List","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/05/24/9","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-46745","sourceIdentifier":"security@apache.org","published":"2026-05-25T11:16:18.407","lastModified":"2026-05-27T15:31:05.040","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Apache Airflow FAB Auth Manager contains an LDAP filter injection vulnerability (CWE-90) that allows unauthenticated attackers to exfiltrate directory data or bypass authentication. Upgrade to apache-airflow-providers-fab 3.6.4 or later. If immediate upgrade is not possible, disable LDAP authentication until the provider can be updated."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security@apache.org","type":"Secondary","description":[{"lang":"en","value":"CWE-90"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:apache:apache-airflow-providers-fab:*:*:*:*:*:*:*:*","versionEndExcluding":"3.6.4","matchCriteriaId":"E5E25438-D15E-4F43-B0FB-627D8119F40E"}]}]}],"references":[{"url":"https://github.com/apache/airflow/pull/66417","source":"security@apache.org","tags":["Issue Tracking","Patch"]},{"url":"https://lists.apache.org/thread/dvfy0bs181xwsrjrd3y5c55ztbzm8yhh","source":"security@apache.org","tags":["Mailing List","Vendor Advisory"]},{"url":"http://www.openwall.com/lists/oss-security/2026/05/24/10","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-9538","sourceIdentifier":"9b29abf9-4ab0-4765-b253-1875cd9b441e","published":"2026-05-26T02:16:41.150","lastModified":"2026-05-27T17:24:29.933","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Archive::Tar versions before 3.10 for Perl allow memory exhaustion via attacker controlled entry size field in tar header.\n\n_read_tar() reads each entry's payload with $handle->read($$data, $block), where $block is derived from the entry's 12-byte size field in the tar header with no upper bound on that value.\n\nA crafted header declaring a multi-gigabyte size causes Perl to allocate a scalar of that size."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","type":"Secondary","description":[{"lang":"en","value":"CWE-789"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:archive\\:\\:tar_project:archive\\:\\:tar:*:*:*:*:*:perl:*:*","versionEndExcluding":"3.10","matchCriteriaId":"0D0D2922-4664-4650-8D9E-C8D5641A7106"}]}]}],"references":[{"url":"https://github.com/jib/archive-tar-new/commit/f9af01426038e29d9578825a0cd3626946ab08c7.patch","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","tags":["Patch"]},{"url":"https://metacpan.org/release/BINGOS/Archive-Tar-3.10/changes","source":"9b29abf9-4ab0-4765-b253-1875cd9b441e","tags":["Release Notes"]},{"url":"http://www.openwall.com/lists/oss-security/2026/05/26/4","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-40033","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-26T15:16:34.480","lastModified":"2026-05-27T14:48:10.980","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because rectangle validation clamps coordinates to UINT16_MAX but performs copy operations using unclamped cache entry dimensions, enabling malicious RDP servers to trigger large out-of-bounds writes and potentially achieve remote code execution or client crash."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*","versionEndExcluding":"3.26.0","matchCriteriaId":"186FAA8A-CF9D-40F3-8509-DAC168BFDA2F"}]}]}],"references":[{"url":"https://github.com/FreeRDP/FreeRDP/commit/23b36cd00ebf0ccd97750fcdbc9aa2f362352da7","source":"disclosure@vulncheck.com","tags":["Patch"]},{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p6r2-4hgm-m6ff","source":"disclosure@vulncheck.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://www.vulncheck.com/advisories/freerdp-heap-buffer-overflow-in-gdi-cachetosurface-via-rectangle-validation-bypass","source":"disclosure@vulncheck.com","tags":["Third Party Advisory"]},{"url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p6r2-4hgm-m6ff","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46620","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T16:16:26.130","lastModified":"2026-05-27T17:16:40.590","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"e107 is a content management system (CMS). Prior to 2.3.5, e107 CMS does not properly enforce CSRF token validation on comment moderation actions. The problem comes down to how session_handler::check() handles CSRF tokens. Instead of requiring a token on every state-changing request, it only validates the token if one happens to be present. If there is no token at all, the check is skipped entirely. This vulnerability is fixed in 2.3.5."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-285"},{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://github.com/e107inc/e107/security/advisories/GHSA-m4hh-m278-jwg5","source":"security-advisories@github.com"},{"url":"https://github.com/e107inc/e107/security/advisories/GHSA-m4hh-m278-jwg5","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-48684","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T16:16:26.440","lastModified":"2026-05-27T14:26:15.690","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the NetFlow v9 options template parser. In process_netflow_v9_options_template() (src/netflow_plugin/netflow_v9_collector.cpp), the scope parsing loop (lines 224-229) iterates until scopes_offset reaches the attacker-controlled option_scope_length value, reading netflow9_template_flowset_record_t structures at each step. No bounds check validates that (zone_address + scopes_offset + sizeof(record)) stays within the flowset. The same issue affects the options field loop (lines 241-257) with option_length. Furthermore, option_scope_length is not validated to be a multiple of sizeof(netflow9_template_flowset_record_t), potentially causing misaligned reads. An attacker can trigger reads past the end of the UDP packet buffer."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/netflow_plugin/netflow_v9_collector.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48684-netflow-v9-options-oob","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48685","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T16:16:26.570","lastModified":"2026-05-27T14:23:59.343","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgp_protocol.hpp, the parse_raw_bgp_attribute() function correctly identifies when extended_length_bit is set and sets length_of_length_field to 2, but then reads only a single byte for the attribute value length (attribute_value_length = value[2] at line 173). Per RFC 4271 Section 4.3, when the Extended Length bit is set, the Attribute Length field is two octets and the value should be read as a 16-bit big-endian integer from value[2] and value[3]. As a result, any attribute longer than 255 bytes has its length silently truncated to the low byte (e.g., 300 bytes = 0x012C is read as 0x2C = 44 bytes). The remaining 256 bytes are then misinterpreted as subsequent attributes, causing cascading parse failures and potential out-of-bounds memory access."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-130"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/bgp_protocol.hpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48685-bgp-extended-length","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48686","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T16:16:26.693","lastModified":"2026-05-27T14:23:43.740","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI (Network Layer Reachability Information) decoder. The function decode_bgp_subnet_encoding_ipv4_raw() in src/bgp_protocol.cpp reads prefix_bit_length directly from the BGP packet (line 99) without validating it is <= 32 for IPv4 prefixes. This value is passed to how_much_bytes_we_need_for_storing_certain_subnet_mask() which computes ceil(prefix_bit_length / 8), returning up to 32 bytes for a prefix_bit_length of 255. The result is used as the length argument to memcpy() (line 106), which copies into a 4-byte uint32_t stack variable (prefix_ipv4). This causes a stack buffer overflow of up to 28 bytes, which can be exploited for arbitrary code execution. Additionally, the unvalidated prefix_bit_length is passed to convert_cidr_to_binary_netmask_local_function_copy() (line 111), where a shift of (32 - cidr) with cidr > 32 causes undefined behavior."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-120"},{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/bgp_protocol.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48686-bgp-nlri-stack-overflow","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48687","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T16:16:26.800","lastModified":"2026-05-27T18:16:28.007","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _log() function in src/juniper_plugin/fastnetmon_juniper.php (lines 117-118) constructs shell commands by concatenating the $msg parameter directly into exec() calls: exec(\"echo `date` \\\"- {FASTNETMON] - \" . $msg . \" \\\" >> \" . $FILE_LOG_TMP). The $msg variable contains unsanitized data derived from command-line arguments argv[1] through argv[3], which represent the attack IP address, direction, and power. While FastNetMon's C++ core currently passes IP addresses via inet_ntoa() (which only produces safe dotted-decimal notation), the PHP script performs no input validation or shell escaping. If the script is invoked directly, by another orchestration system, or if future code changes pass string-sourced IPs, arbitrary commands can be injected. The correct fix is to replace exec() with file_put_contents() or use escapeshellarg() on all parameters."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/juniper_plugin/fastnetmon_juniper.php","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48687-juniper-cmd-injection","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48692","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T16:16:27.007","lastModified":"2026-05-27T18:30:15.387","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 exposes a gRPC API server on port 50052 with no authentication mechanism. The server is initialized with grpc::InsecureServerCredentials() (src/fastnetmon.cpp line 477) and a source code comment explicitly acknowledges 'Listen on the given address without any authentication mechanism.' None of the RPC methods in src/api.cpp (ExecuteBan, ExecuteUnBan, GetBanlist, GetTotalTrafficCounters, etc.) perform any credential verification. The ExecuteBan and ExecuteUnBan methods trigger security-critical actions: BGP route announcements that can blackhole network traffic, and execution of external notification scripts via popen(). An attacker with local network access can ban arbitrary IP addresses (causing denial of service to legitimate traffic), unban active attacks (disabling DDoS mitigation), and trigger script execution. There is also no role-based access control separating read-only monitoring from destructive administrative operations."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/api.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/fastnetmon.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48692-grpc-no-auth","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-44729","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T17:16:46.837","lastModified":"2026-05-27T14:45:46.457","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Twenty is an open source CRM. In 1.18.0 and earlier, the file serving endpoints in Twenty CRM at /files/* and /file/:fileFolder/:id serve uploaded files using fileStream.pipe(res) without setting any Content-Type, Content-Disposition, or X-Content-Type-Options response headers. This allows an authenticated attacker to upload an HTML file containing JavaScript, which will be rendered by the victim's browser in the context of the Twenty CRM domain when accessed — enabling session hijacking, account takeover, and data theft."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:twenty:twenty:*:*:*:*:*:*:*:*","versionEndIncluding":"1.18.0","matchCriteriaId":"AD331BA5-5287-430D-9EE5-C3530D6415F9"}]}]}],"references":[{"url":"https://github.com/twentyhq/twenty/security/advisories/GHSA-f5h2-3qw5-3qp7","source":"security-advisories@github.com","tags":["Exploit","Mitigation","Vendor Advisory"]},{"url":"https://github.com/twentyhq/twenty/security/advisories/GHSA-f5h2-3qw5-3qp7","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Exploit","Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-48690","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T17:16:53.547","lastModified":"2026-05-27T14:34:09.873","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packet_storage.hpp, the allocate_buffer() function computes memory_size_in_bytes as 'buffer_size_in_packets * (max_captured_packet_size + sizeof(fastnetmon_pcap_pkthdr_t)) + sizeof(fastnetmon_pcap_file_header_t)' using unsigned int (32-bit) arithmetic. With max_captured_packet_size=1500 and sizeof(fastnetmon_pcap_pkthdr_t)=16, each packet requires approximately 1516 bytes. If buffer_size_in_packets exceeds approximately 2,832,542, the multiplication overflows, resulting in a much smaller allocation than expected. Subsequent write_packet() calls then write past the allocated buffer, causing heap corruption. The buffer_size_in_packets value is derived from the ban_details_records_count configuration parameter, which is parsed using atoi() with no overflow checking."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-122"},{"lang":"en","value":"CWE-190"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/packet_storage.hpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48690-packet-storage-integer-overflow","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48693","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T17:16:53.807","lastModified":"2026-05-27T14:42:18.563","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' (src/fastnetmon.cpp line 159). The print_screen_contents_into_file() function (src/fastnetmon_logic.cpp line 2186) opens this path with std::ios::trunc without checking for symlinks or using O_NOFOLLOW. Additionally, the chmod() call on line 2190 always operates on cli_stats_file_path regardless of which file_path parameter was passed (a bug that applies wrong permissions), and the umask is set to 0 during daemonization (src/fastnetmon.cpp line 1821), making all created files world-writable. A local attacker can exploit this to overwrite arbitrary files as the FastNetMon process user (typically root)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/fastnetmon.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/fastnetmon_logic.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48693-symlink-tmp","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48697","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T17:16:53.920","lastModified":"2026-05-27T15:31:15.843","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 does not verify TLS certificates on outbound HTTPS connections. The execute_web_request_secure() function in src/fast_library.cpp creates a boost::asio::ssl::context with tls_client mode and calls set_default_verify_paths() to load CA certificates, but never calls set_verify_mode(boost::asio::ssl::verify_peer). Without this call, OpenSSL performs the TLS handshake without validating the server's certificate chain, making all HTTPS connections vulnerable to man-in-the-middle attacks. This function is used for telemetry reporting to community-stats.fastnetmon.com, which sends system information including CPU model, kernel version, traffic statistics, and software configuration. An attacker can intercept and modify this data or redirect it to a malicious server."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/fast_library.cpp","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48697-missing-tls-validation","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-24199","sourceIdentifier":"psirt@nvidia.com","published":"2026-05-26T18:16:38.987","lastModified":"2026-05-27T18:29:56.057","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where a user could cause a race condition by reordering compiler or processor memory instructions. A successful exploit of this vulnerability might lead to denial of service."}],"metrics":{"cvssMetricV31":[{"source":"psirt@nvidia.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.0,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@nvidia.com","type":"Secondary","description":[{"lang":"en","value":"CWE-362"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"535","versionEndExcluding":"535.309.01","matchCriteriaId":"3680577D-C135-46DA-BB23-F99CB82DB9D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"580","versionEndExcluding":"580.159.03","matchCriteriaId":"91CBB365-5B39-47B3-98AF-2DD11F3D6FA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"595","versionEndExcluding":"595.71.05","matchCriteriaId":"AFD145D7-0473-4AD3-9295-02F20621DAD9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:*","matchCriteriaId":"24DE5CC2-3787-4605-8EFA-77590E36E960"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"535","versionEndExcluding":"535.309.01","matchCriteriaId":"3680577D-C135-46DA-BB23-F99CB82DB9D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"580","versionEndExcluding":"580.159.03","matchCriteriaId":"91CBB365-5B39-47B3-98AF-2DD11F3D6FA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"595","versionEndExcluding":"595.71.05","matchCriteriaId":"AFD145D7-0473-4AD3-9295-02F20621DAD9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:*","matchCriteriaId":"333646B0-AAD5-4DD7-8940-6334D0A8E77C"},{"vulnerable":false,"criteria":"cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:*","matchCriteriaId":"A1DB9FB5-E115-4E96-98F8-3FAFAC120E98"},{"vulnerable":false,"criteria":"cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:*","matchCriteriaId":"08C63EA1-8719-4F5C-922A-C77ED4CEF7C7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"535","versionEndExcluding":"535.309.01","matchCriteriaId":"3680577D-C135-46DA-BB23-F99CB82DB9D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"580","versionEndExcluding":"580.159.03","matchCriteriaId":"91CBB365-5B39-47B3-98AF-2DD11F3D6FA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*","versionStartIncluding":"595","versionEndExcluding":"595.71.05","matchCriteriaId":"AFD145D7-0473-4AD3-9295-02F20621DAD9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:nvidia:tesla:-:*:*:*:*:*:*:*","matchCriteriaId":"D135086F-CA5E-4242-ACBA-C3AC82F4BE03"}]}]}],"references":[{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-24199","source":"psirt@nvidia.com","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://nvidia.custhelp.com/app/answers/detail/a_id/5821","source":"psirt@nvidia.com","tags":["Vendor Advisory"]},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-24199","source":"psirt@nvidia.com","tags":["Third Party Advisory","VDB Entry"]}]}},{"cve":{"id":"CVE-2026-44667","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T18:16:50.120","lastModified":"2026-05-27T17:16:39.663","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FACTION is a PenTesting Report Generation and Collaboration Framework. Prior to 1.8.3, Faction is vulnerable to stored cross-site scripting (XSS) via attachment filenames in remediation verification file preview flows. User-supplied filename values are persisted and then rendered into HTML and attribute contexts without output encoding, allowing attacker-controlled JavaScript to execute in the browser of any user who opens the affected verification/remediation views. Because the payload is stored server-side and rendered to other users, exploitation is persistent and can impact privileged accounts. This vulnerability is fixed in 1.8.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/factionsecurity/faction/releases/tag/1.8.3","source":"security-advisories@github.com"},{"url":"https://github.com/factionsecurity/faction/security/advisories/GHSA-x3fm-rrxj-rg66","source":"security-advisories@github.com"},{"url":"https://github.com/factionsecurity/faction/security/advisories/GHSA-x3fm-rrxj-rg66","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44668","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T18:16:50.270","lastModified":"2026-05-27T15:16:28.060","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"FACTION is a PenTesting Report Generation and Collaboration Framework. Prior to 1.8.3, AccessControlInterceptor, the authentication gate for all Struts2 actions, unconditionally calls invocation.invoke() without checking for a valid session. Four action methods in BoilerPlateConfig perform no local session check either, allowing an unauthenticated attacker to read, overwrite, deactivate, and permanently delete any boilerplate template in the system. This vulnerability is fixed in 1.8.3."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/factionsecurity/faction/releases/tag/1.8.3","source":"security-advisories@github.com"},{"url":"https://github.com/factionsecurity/faction/security/advisories/GHSA-7cv6-h22r-2qf2","source":"security-advisories@github.com"},{"url":"https://github.com/factionsecurity/faction/security/advisories/GHSA-7cv6-h22r-2qf2","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44728","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T18:16:50.880","lastModified":"2026-05-27T18:21:19.970","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel to generate output code that executes arbitrary code. This vulnerability is fixed in 7.29.4 and 8.0.0-alpha.13."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.5,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"},{"lang":"en","value":"CWE-843"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:*:*:*:*:*:*:*:*","versionStartIncluding":"7.12.0","versionEndExcluding":"7.29.4","matchCriteriaId":"284B552B-0419-42FB-A5B4-2C214887D1E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha0:*:*:*:*:*:*","matchCriteriaId":"35F6AF6B-8CB6-40BB-B0AE-32E89718ED8C"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha1:*:*:*:*:*:*","matchCriteriaId":"DAFA4C96-CD2A-47A5-BA4E-134BA1D366B3"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha10:*:*:*:*:*:*","matchCriteriaId":"BAC310EC-C0CF-4D27-BA54-20B3207B4118"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha11:*:*:*:*:*:*","matchCriteriaId":"80E37BB6-34C2-437B-A9DC-018B23F5E7BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha12:*:*:*:*:*:*","matchCriteriaId":"B74C4261-EB8F-448D-AF41-CB82246C3EB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha2:*:*:*:*:*:*","matchCriteriaId":"BD426CF6-E4B7-4F65-9968-A485F745E377"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha3:*:*:*:*:*:*","matchCriteriaId":"92CE9983-D67E-4DE6-B9EE-CCE55DF615E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha4:*:*:*:*:*:*","matchCriteriaId":"66E5DE6B-CD6D-4687-AB1C-90B294DE8DCC"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha5:*:*:*:*:*:*","matchCriteriaId":"5E3BD45A-177D-4006-8820-EEABE6EF03FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha6:*:*:*:*:*:*","matchCriteriaId":"D9323EF4-77AA-410A-A2F7-D905C6175A64"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha7:*:*:*:*:*:*","matchCriteriaId":"67E62B17-72F2-464F-AB14-E7A9F744AC01"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha8:*:*:*:*:*:*","matchCriteriaId":"BDC6F0F5-3141-41CD-B8D0-13AE9FF4FFEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:babel:babel:8.0.0:alpha9:*:*:*:*:*:*","matchCriteriaId":"FC459C4A-04F3-4521-A7EA-A03A118AA4F0"}]}]}],"references":[{"url":"https://github.com/babel/babel/security/advisories/GHSA-fv7c-fp4j-7gwp","source":"security-advisories@github.com","tags":["Mitigation","Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-44730","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T18:16:51.023","lastModified":"2026-05-27T15:40:38.150","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.9.7, an organization admin can escalate their privileges by adding a user from a different organization with higher privileges, to their own organization. This is due to incorrect ACL on userEdit relationAdd. This vulnerability is fixed in 6.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:citeum:opencti:*:*:*:*:*:*:*:*","versionEndExcluding":"6.9.7","matchCriteriaId":"ED81D9E5-C426-4E59-887E-91855DFEAF95"}]}]}],"references":[{"url":"https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-q537-qhj4-wcjx","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-46624","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T18:16:52.400","lastModified":"2026-05-27T14:45:01.903","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Twenty is an open source CRM. From 1.7.7 through 1.16.7, a critical Remote Code Execution (RCE) vulnerability exists in Twenty CRM via a chained SQL Injection and PostgreSQL COPY TO PROGRAM attack. If Postgres user is a super user then any authenticated user can execute arbitrary OS commands on the database server by injecting SQL through the unsanitized timeZone parameter in the REST API groupBy endpoint. The timeZone field within the group_by query parameter is directly interpolated into a raw SQL expression using JavaScript template literals without any parameterization, validation, or escaping. This affects engine/api/graphql/graphql-query-runner/group-by/resolvers/utils/get-group-by-expression.util.ts."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:twenty:twenty:*:*:*:*:*:*:*:*","versionStartIncluding":"1.7.7","versionEndExcluding":"1.16.7","matchCriteriaId":"769B9D47-5FAF-4B6C-A813-62DB115A7ADB"}]}]}],"references":[{"url":"https://github.com/twentyhq/twenty/security/advisories/GHSA-jgx4-6mr9-9573","source":"security-advisories@github.com","tags":["Vendor Advisory","Exploit"]},{"url":"https://github.com/twentyhq/twenty/security/advisories/GHSA-jgx4-6mr9-9573","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["Vendor Advisory","Exploit"]}]}},{"cve":{"id":"CVE-2026-48694","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T18:16:52.840","lastModified":"2026-05-27T15:53:52.800","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains a configuration injection vulnerability in the Juniper router integration plugin. In src/juniper_plugin/fastnetmon_juniper.php, the $IP_ATTACK variable (received from argv[1]) is directly interpolated into Juniper NETCONF set-configuration commands at lines 69 and 90 without any validation or sanitization. Line 69: $conn->load_set_configuration(\"set routing-options static route {$IP_ATTACK} community 65535:666 discard\"). Line 90: $conn->load_set_configuration(\"delete routing-options static route {$IP_ATTACK}/32\"). An attacker who can control the IP address string can inject additional Juniper CLI configuration commands by embedding newline characters followed by arbitrary set/delete commands. This could modify the router's routing table, firewall filters, user accounts, or any other configuration element accessible via NETCONF. The impact is full router compromise."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48694-juniper-netconf-injection","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48695","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T18:16:52.950","lastModified":"2026-05-27T15:51:44.477","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the MikroTik router integration plugin. The _log() function in src/mikrotik_plugin/fastnetmon_mikrotik.php (lines 107-108) constructs shell commands by concatenating the $msg parameter directly into exec() calls: exec(\"echo `date` \\\"- {FASTNETMON] - \" . $msg . \" \\\" >> \" . $FILE_LOG_TMP). This is identical in pattern to the Juniper plugin vulnerability. The $msg variable contains unsanitized attack data from command-line arguments. An attacker who can influence argv[] values can inject arbitrary shell commands. The fix is to replace exec() with file_put_contents() or use escapeshellarg()."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://github.com/pavel-odintsov/fastnetmon/blob/master/src/mikrotik_plugin/fastnetmon_mikrotik.php","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48695-mikrotik-cmd-injection","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-48696","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T18:16:53.057","lastModified":"2026-05-27T15:42:28.483","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"FastNetMon Community Edition through 1.2.9 has a buffer overflow, a different vulnerability than CVE-2026-48686 and CVE-2026-48689."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":3.6}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-120"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-120"},{"lang":"en","value":"CWE-676"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pavel-odintsov:fastnetmon:*:*:*:*:community:*:*:*","versionEndIncluding":"1.2.9","matchCriteriaId":"E712A01F-3AD7-4CC2-9A8B-F8C63756EBBF"}]}]}],"references":[{"url":"https://github.com/pavel-odintsov/fastnetmon","source":"cve@mitre.org","tags":["Product"]},{"url":"https://lorikeetsecurity.com/blog/fastnetmon-cve-2026-48696-exabgp-sprintf-overflow","source":"cve@mitre.org","tags":["Third Party Advisory"]}]}},{"cve":{"id":"CVE-2026-8633","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-26T18:16:56.513","lastModified":"2026-05-27T18:12:04.373","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to remote code execution in the Web Server Plug-ins, through a specially crafted request."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:-:*:*:*","versionStartIncluding":"8.5.0.0","versionEndIncluding":"8.5.5.29","matchCriteriaId":"631AA3FA-7D84-45CB-A5DB-9DEB7ABF32E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:*","versionStartIncluding":"8.5.0.0","versionEndIncluding":"8.5.5.29","matchCriteriaId":"5E720E76-CEDA-45EE-BCAF-57084994FCBB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:-:*:*:*","versionStartIncluding":"9.0.0.0","versionEndIncluding":"9.0.5.27","matchCriteriaId":"C7A90C7D-5C17-4C1E-B6F8-9E70851863AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:liberty:*:*:*","versionStartIncluding":"9.0.0.0","versionEndIncluding":"9.0.5.27","matchCriteriaId":"9A26A652-4DE4-4D8D-8D8E-3F4DCE7BD392"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274072","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2026-9560","sourceIdentifier":"security@openvpn.net","published":"2026-05-26T18:16:58.577","lastModified":"2026-05-27T18:08:50.350","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel"}],"metrics":{"cvssMetricV40":[{"source":"security@openvpn.net","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.4,"baseSeverity":"CRITICAL","attackVector":"LOCAL","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@openvpn.net","type":"Secondary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-267"},{"lang":"en","value":"CWE-270"},{"lang":"en","value":"CWE-648"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openvpn:connect:*:*:*:*:*:macos:*:*","versionStartIncluding":"3.5.1","versionEndExcluding":"3.8.2","matchCriteriaId":"8407AE06-85C9-4AE6-A3F5-ED03B9C9437E"}]}]}],"references":[{"url":"https://openvpn.net/connect-docs/macos-release-notes.html","source":"security@openvpn.net","tags":["Release Notes"]}]}},{"cve":{"id":"CVE-2026-3603","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-26T19:16:27.527","lastModified":"2026-05-27T14:16:46.850","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Engineering Lifecycle Management 7.0.3 Interim Fix 001 through  Interim Fix 021, 7.1.0  Interim Fix 001 through  Interim Fix 009, and 7.2.0 and 7.2.0 Interim Fix 001 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. An authenticated attacker could exploit this vulnerability to expose sensitive information or consume memory resources."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-611"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274078","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-4051","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-26T19:16:28.990","lastModified":"2026-05-27T15:41:55.827","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an attacker with administrative privileges to execute remote code due to exposed method that is not properly restricted."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-749"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:-:*:*:*:*:*:*","matchCriteriaId":"BA0582EF-251B-4694-8B17-EC0F70F10801"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix002:*:*:*:*:*:*","matchCriteriaId":"209A6B2B-A3CE-4F5F-B1D0-36228625005D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix003:*:*:*:*:*:*","matchCriteriaId":"8449CFAE-05C3-4212-AE0F-7B82E588D8A2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix004:*:*:*:*:*:*","matchCriteriaId":"1C68C005-C09B-427B-9206-F1CA70F72EE5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix005:*:*:*:*:*:*","matchCriteriaId":"D712BB02-8954-4F1A-9940-7E547342410B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix006:*:*:*:*:*:*","matchCriteriaId":"32B14BF7-43A6-4979-A3AD-369034486EFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix007:*:*:*:*:*:*","matchCriteriaId":"7DD02B82-C06B-4D2A-B8B8-633C8AE208EB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix008:*:*:*:*:*:*","matchCriteriaId":"62D0DE8D-0986-4B04-972E-71053995C1CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix009:*:*:*:*:*:*","matchCriteriaId":"7F83533F-043F-4073-A883-27A2834D6130"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix010:*:*:*:*:*:*","matchCriteriaId":"34427171-70E0-474E-80DD-BDF46135CE4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix011:*:*:*:*:*:*","matchCriteriaId":"30B2FA43-5684-4A6B-9A5D-879E42C1A8B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix012:*:*:*:*:*:*","matchCriteriaId":"EA376C3C-8509-4342-A54B-A21F031BF6C1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix013:*:*:*:*:*:*","matchCriteriaId":"4C7B4708-5BB9-4BB9-BEB4-8574F2872DA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix014:*:*:*:*:*:*","matchCriteriaId":"5B839BEE-17AB-4776-B5F5-443E07CC6A18"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix015:*:*:*:*:*:*","matchCriteriaId":"42093B36-DC7E-41D8-B846-A943DD576FDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix016:*:*:*:*:*:*","matchCriteriaId":"2795CBD8-0F0B-4347-8499-33062AC0ED80"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix017:*:*:*:*:*:*","matchCriteriaId":"39161861-4C6F-4F6C-961F-5FD142999AA8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix018:*:*:*:*:*:*","matchCriteriaId":"82039467-E458-4F12-96EA-0AC014831851"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix019:*:*:*:*:*:*","matchCriteriaId":"A389A247-0816-44A7-B4AE-EF218BCE9BC1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix020:*:*:*:*:*:*","matchCriteriaId":"5DE20864-F382-46DD-B21D-50907BA18A87"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix021:*:*:*:*:*:*","matchCriteriaId":"D9EDBD1C-AE4E-40C7-93D3-D2C48B558F19"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:-:*:*:*:*:*:*","matchCriteriaId":"EA9D4742-2C27-4515-86D8-69A2C8EF2910"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix001:*:*:*:*:*:*","matchCriteriaId":"6BE1B8B4-40CB-4B72-B71B-D321B0CD4CAA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix002:*:*:*:*:*:*","matchCriteriaId":"05AE7D18-38B4-4326-9A48-7B1BB4C72EC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix003:*:*:*:*:*:*","matchCriteriaId":"15181084-D833-4777-836C-8E0CCE53342F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix004:*:*:*:*:*:*","matchCriteriaId":"FDBAD00C-2DD4-4A13-B89E-55940B1598CB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix005:*:*:*:*:*:*","matchCriteriaId":"24EAD89C-B98C-41A4-B6AF-FB9550392395"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix006:*:*:*:*:*:*","matchCriteriaId":"3AADA4BD-ADB2-4500-9AE6-AB6C0DF7DC84"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix007:*:*:*:*:*:*","matchCriteriaId":"EE8F634A-2DA7-4772-AB14-472AE31C9ECD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix008:*:*:*:*:*:*","matchCriteriaId":"63A75D7F-6124-4AA5-8057-B6DBB2BFE7B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix009:*:*:*:*:*:*","matchCriteriaId":"1AEB66B1-1C3E-4510-A019-0DB791AEC72C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.2.0:-:*:*:*:*:*:*","matchCriteriaId":"B08E3BAA-0C9E-487E-954C-7561D1E4E482"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_lifecycle_management:7.2.0:ifix001:*:*:*:*:*:*","matchCriteriaId":"AACF7171-A3EA-43E8-97AA-09269AB083CB"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274077","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]}]}},{"cve":{"id":"CVE-2025-68709","sourceIdentifier":"cve@mitre.org","published":"2026-05-26T20:16:16.167","lastModified":"2026-05-27T18:16:21.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a local attacker to trigger arbitrary JavaScript execution via BrowserMainActivity, which accepts VIEW intents with javascript: URIs. This unsafe navigation path results in script execution and may allow UI spoofing or privilege escalation."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":5.2,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":2.7}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://github.com/actuator/com.alpha.applock","source":"cve@mitre.org"},{"url":"https://github.com/actuator/com.alpha.applock/blob/main/CVE-2025-68709","source":"cve@mitre.org"},{"url":"https://play.google.com/store/apps/details?id=com.alpha.applock","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-44214","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T20:16:19.803","lastModified":"2026-05-27T14:16:53.700","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"eventsource-encoder encodes events as well-formed EventSource/Server Sent Event (SSE) messages. Prior to 1.0.2, eventsource-encoder does not sanitize the event or id fields of an EventSourceMessage before serializing them. An attacker who controls either field can inject arbitrary Server-Sent Events line terminators (\\n, \\r, or \\r\\n) and thereby forge additional SSE fields or entire messages on the stream. This vulnerability is fixed in 1.0.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-93"},{"lang":"en","value":"CWE-113"}]}],"references":[{"url":"https://github.com/rexxars/eventsource-encoder/security/advisories/GHSA-m9g3-3g99-mhpx","source":"security-advisories@github.com"},{"url":"https://github.com/rexxars/eventsource-encoder/security/advisories/GHSA-m9g3-3g99-mhpx","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9573","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T20:16:21.503","lastModified":"2026-05-27T18:16:34.780","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was detected in itsourcecode Student Transcript Processing System 1.0. This affects an unknown part of the file /admin/modules/student/index.php?view=view. Performing a manipulation of the argument studentId results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/nidieaaa/test/issues/12","source":"cna@vuldb.com"},{"url":"https://itsourcecode.com/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817552","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365632","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365632/cti","source":"cna@vuldb.com"},{"url":"https://github.com/nidieaaa/test/issues/12","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2025-14361","sourceIdentifier":"audit@patchstack.com","published":"2026-05-26T21:16:35.313","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in AA-Team Woocommerce Envato Affiliates allows Accessing Functionality Not Properly Constrained by ACLs.\n\nThis issue affects Woocommerce Envato Affiliates: from n/a through 1.2.1."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/wooenvato/vulnerability/wordpress-woocommerce-envato-affiliates-plugin-1-2-1-settings-change-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-44443","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:37.760","lastModified":"2026-05-27T14:57:07.120","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, consumeNonce() only checks that the module-level variable is set and unexpired. It does not validate any value from the incoming HTTP request or bind the nonce to the admin's session. If the admin's auth.api.signUpEmail() call fails before the before hook fires (e.g. BetterAuth rejects a duplicate email at the validation layer), the nonce is set but never consumed. Any POST /api/auth/sign-up/email request that arrives during the remaining window registers successfully regardless of who sent it. An attacker who can observe or predict when the admin is creating users (must be a dupplicate user) can race the 10-second window to register an unauthorized account. This vulnerability is fixed in 0.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-362"}]}],"references":[{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-6fcp-x253-wwv7","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44444","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:37.897","lastModified":"2026-05-27T15:16:27.937","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the Spindle extension build pipeline calls bun install without the --ignore-scripts flag before running the static backend safety scan (assertSafeBackendBundle). A malicious extension that ships a package.json with a preinstall, postinstall, or prepare lifecycle script achieves host-level code execution the moment an admin presses Install before any dist file is inspected. This vulnerability is fixed in 0.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.3,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-8x98-3wjp-pmj9","source":"security-advisories@github.com"},{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-8x98-3wjp-pmj9","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44449","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:38.037","lastModified":"2026-05-27T14:57:07.120","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when the primary toSmbPath(fullPath) call throws, the method falls back to a dirname/basename split and only validates the directory prefix. The basename is concatenated directly into the smbclient -c script without validation. smbclient interprets ; as a subcommand separator and !cmd as a local-shell escape that runs cmd on the host. A path whose directory component is clean but whose basename contains \"; !<cmd>; echo \" achieves arbitrary command execution on the Lumiverse server. This vulnerability is fixed in 0.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.3,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-88"}]}],"references":[{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-4v38-9hqq-7j53","source":"security-advisories@github.com"},{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-4v38-9hqq-7j53","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44450","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:38.173","lastModified":"2026-05-27T14:57:07.120","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the MCP server creation endpoint validates the command field against an allowlist of binary names but forwards the args array to the child process without any validation. Every binary on the allowlist accepts an inline-code execution flag (-e for node/bun, -c for python3/deno), giving any logged-in user arbitrary OS-level code execution on the Lumiverse server. The route requires only requireAuth (not requireOwner). The server binds on all interfaces (::) and the host-header rebinding check is bypassed trivially by any HTTP client that sends Host: localhost:<port> directly, making this exploitable from any machine with network access to the server port. This vulnerability is fixed in 0.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-88"}]}],"references":[{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-mfwv-ch2f-9j5v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44451","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:38.303","lastModified":"2026-05-27T18:16:23.607","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the component override system transpiles user-supplied TSX via Sucrase and evaluates it with new Function, shadowing dangerous globals (fetch, window, eval, etc.) with undefined. A static source validator (validateComponentOverrideSource) additionally blocks these identifiers by word-boundary regex. Both controls are bypassed. String-split bypass of the static validator: any blocked identifier can be reconstructed at runtime from string fragments ('ownerDoc' + 'ument'). DOM ref escape from the sandbox: useRef and useEffect are provided in scope. A ref attached to a rendered element gives a live DOM node. From any real DOM node, node['ownerDoc'+'ument']['def'+'aultView'] yields the real window, bypassing all identifier shadows. Theme packs (.lumitheme / .lumiverse-theme) are the shareable delivery mechanism. A malicious pack is an exploit path: the victim imports the file, enables one component override in the Theme Editor, and the payload fires in their authenticated session.This vulnerability is fixed in 0.9.7."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.8}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-693"}]}],"references":[{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-rgp6-55rw-5xf4","source":"security-advisories@github.com"},{"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-rgp6-55rw-5xf4","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44836","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:38.710","lastModified":"2026-05-27T14:16:55.553","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the preview route derives an example name from the URL and calls it with public_send. The code does not verify that the requested method is one of the preview examples explicitly defined by the preview class. As a result, inherited public methods on ViewComponent::Preview are route-reachable. The most important one is render_with_template, which accepts template: and locals:. Those values can come from request params and are later passed to Rails as render template:. If previews are exposed, an attacker can render internal Rails templates that are not otherwise routable. This vulnerability is fixed in 4.9.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-749"}]}],"references":[{"url":"https://github.com/ViewComponent/view_component/security/advisories/GHSA-7f3r-gwc9-2995","source":"security-advisories@github.com"},{"url":"https://github.com/ViewComponent/view_component/security/advisories/GHSA-7f3r-gwc9-2995","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44844","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T21:16:39.163","lastModified":"2026-05-27T14:16:55.660","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"eml_parser serves as a python module for parsing eml files and returning various information found in the e-mail as well as computed information. Prior to 3.0.1, EmlParser.get_raw_body_text() recurses unconditionally for every nested message/rfc822 attachment without any depth limit. An attacker who can supply a badly crafted EML file with approximately 120 nested message/rfc822 parts triggers an unhandled RecursionError and aborts parsing of the message. A 12 KB EML file is enough to crash a worker. Though this causes the parser to crash, it is an unlikely scenario as the suggested EML that crashes the parser would not pass basic RFC compliance tests. This vulnerability is fixed in 3.0.1."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-674"}]}],"references":[{"url":"https://github.com/GOVCERT-LU/eml_parser/security/advisories/GHSA-g47v-rwmh-r9f8","source":"security-advisories@github.com"},{"url":"https://github.com/GOVCERT-LU/eml_parser/security/advisories/GHSA-g47v-rwmh-r9f8","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-8676","sourceIdentifier":"product-security@silabs.com","published":"2026-05-26T21:16:44.630","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond."}],"metrics":{"cvssMetricV31":[{"source":"product-security@silabs.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"product-security@silabs.com","type":"Secondary","description":[{"lang":"en","value":"CWE-290"}]}],"references":[{"url":"https://community.silabs.com/068Vm00000p3N9C","source":"product-security@silabs.com"},{"url":"https://www.silabs.com/documents/public/release-notes/bt-software-release-notes-9.0.0.0.pdf","source":"product-security@silabs.com"}]}},{"cve":{"id":"CVE-2026-9579","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T21:16:44.980","lastModified":"2026-05-27T15:16:35.643","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was found in JeecgBoot up to 3.9.1. Impacted is the function user.getUsername of the file /sys/user/login/setting/userEdit of the component SysUser. The manipulation of the argument userIdentity results in improper access controls. The attack may be launched remotely. The exploit has been made public and could be used. Upgrading to version 3.9.2 is recommended to address this issue. The affected component should be upgraded."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-266"},{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/jeecgboot/JeecgBoot/","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9596","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9596#issuecomment-4385414813","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/releases/tag/v3.9.2","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817891","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365635","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365635/cti","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9596","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-9580","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T21:16:45.167","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access controls. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. Upgrading to version 3.9.2 is sufficient to fix this issue. It is suggested to upgrade the affected component."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"},{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/jeecgboot/JeecgBoot/","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9597","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9597#issuecomment-4385501959","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/releases/tag/v3.9.2","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817892","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365636","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365636/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9581","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T21:16:45.327","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is publicly available and might be used. Upgrading to version 3.9.2 is sufficient to resolve this issue. Upgrading the affected component is recommended."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"},{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/jeecgboot/JeecgBoot/","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9598","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9598#issuecomment-4385719753","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/releases/tag/v3.9.2","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817918","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365637","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365637/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9582","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T21:16:45.493","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A security flaw has been discovered in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This affects an unknown function. Performing a manipulation results in cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"},{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9582-Cross-Site-Request-Forgery/Advisory.md","source":"cna@vuldb.com"},{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9582-Cross-Site-Request-Forgery/poc.html","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817930","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365638","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365638/cti","source":"cna@vuldb.com"},{"url":"https://www.sourcecodester.com/","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9583","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T21:16:45.667","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. Executing a manipulation can lead to information exposure through error message. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-200"},{"lang":"en","value":"CWE-209"}]}],"references":[{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9583-Information-Disclosure/Advisory.md","source":"cna@vuldb.com"},{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9583-Information-Disclosure/poc.sh","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817932","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365639","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365639/cti","source":"cna@vuldb.com"},{"url":"https://www.sourcecodester.com/","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9642","sourceIdentifier":"vulnreport@tenable.com","published":"2026-05-26T21:16:45.827","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"There is a mitigation bypass / (incomplete fix) for CVE-2025-62582 (Unauthenticated Remote Database Access) \n\nAn unauthenticated remote attacker can access configured databases in a DIAView project."}],"metrics":{"cvssMetricV31":[{"source":"vulnreport@tenable.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"vulnreport@tenable.com","type":"Secondary","description":[{"lang":"en","value":"CWE-321"}]}],"references":[{"url":"https://www.tenable.com/security/research/tra-2026-44","source":"vulnreport@tenable.com"}]}},{"cve":{"id":"CVE-2026-42012","sourceIdentifier":"secalert@redhat.com","published":"2026-05-26T22:16:41.913","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier (URI) or Service (SRV) Subject Alternative Names (SANs). This could cause the certificate validation process to incorrectly fall back to checking DNS hostnames against the Common Name (CN), potentially allowing the attacker to spoof legitimate services or intercept sensitive information."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2026:20611","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2026-42012","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2467441","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-42013","sourceIdentifier":"secalert@redhat.com","published":"2026-05-26T22:16:42.050","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could cause the validation process to incorrectly fall back to checking the Common Name (CN) field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to spoofing or man-in-the-middle attacks."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2026:20611","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2026-42013","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2467448","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-42015","sourceIdentifier":"secalert@redhat.com","published":"2026-05-26T22:16:42.180","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in gnutls. An off-by-one error exists in the PKCS#12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS#12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of service (DoS) or potentially other unspecified impacts."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-193"}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2026:20611","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2026-42015","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2467678","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-44213","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:42.443","lastModified":"2026-05-27T17:16:36.323","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"The OpenTelemetry.Exporter.Instana exports telemetry to Instana backend. Prior to 1.1.0, the OpenTelemetry.Exporter.Instana NuGet package does not validate HTTPS/TLS certificates are valid when sending telemetry to a configured Instana back-end when a proxy is configured using the INSTANA_ENDPOINT_PROXY environment variable. If a network attacker can Man-in-the-Middle (MitM) the proxy connection, all OpenTelemetry telemetry data and the Instana API key are exposed to the attacker. This vulnerability is fixed in 1.1.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-295"}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/security/advisories/GHSA-wfr5-454p-mjc2","source":"security-advisories@github.com"},{"url":"https://github.com/open-telemetry/opentelemetry-dotnet-contrib/security/advisories/GHSA-wfr5-454p-mjc2","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44788","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:42.587","lastModified":"2026-05-27T14:16:55.447","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"SharpCompress is a fully managed C# library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory() allows a malicious archive to create directories outside the intended extraction root. For TAR archives, this can be escalated to arbitrary file writes by chaining with a symlink entry, giving a full write primitive on the target filesystem subject to the permissions of the running process."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:L","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/adamhathcock/sharpcompress/security/advisories/GHSA-6c8g-7p36-r338","source":"security-advisories@github.com"},{"url":"https://github.com/adamhathcock/sharpcompress/security/advisories/GHSA-6c8g-7p36-r338","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44895","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:42.730","lastModified":"2026-05-27T14:16:55.787","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0.6.0, the HTTP transport in src/transport.ts ships with no authentication layer at all and a wildcard Access-Control-Allow-Origin: * on every response. The structural defect is that the SSE server stands up a stateful, mutation-capable RPC endpoint that is backed by the operator's GITLAB_PERSONAL_ACCESS_TOKEN without any inbound credential check, then advertises itself to every cross-origin browser context via the wildcard CORS header. The httpServer.listen(port) call at line 97 also passes no host argument, so the bind defaults to 0.0.0.0 and exposes the auth-less surface on every interface. This vulnerability is fixed in 0.6.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":9.2,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"},{"lang":"en","value":"CWE-942"}]}],"references":[{"url":"https://github.com/yoda-digital/mcp-gitlab-server/security/advisories/GHSA-8jr5-6gvj-rfpf","source":"security-advisories@github.com"},{"url":"https://github.com/yoda-digital/mcp-gitlab-server/security/advisories/GHSA-8jr5-6gvj-rfpf","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44905","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.150","lastModified":"2026-05-27T14:16:56.203","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the cryptographic verification pipeline of Vanetza. When processing incoming V2X messages, the ASN.1 decoder accepts the structure as syntactically valid. However, this reveals a logic-based protocol failure where semantic constraints on specific fields are only strictly enforced during OER re-encoding. Specifically, if a crafted packet contains a certificate where the Psid (Provider Service Identifier) sub-type violates subtype constraints (e.g., out-of-range or invalid CHOICE variant), it is accepted during initial parsing, where subtype constraints are not enforced. Later, when StraightVerifyService attempts to calculate a message hash for cryptographic verification, it must re-encode the signing certificate. The underlying ASN.1 wrapper (asn1c_wrapper.cpp) detects the semantic violation during encoding and raises a std::runtime_error. This exception is not caught within the encoding path and propagates to std::terminate, resulting in immediate process termination. This vulnerability is fixed with commit e1a2e2709210d309458c3d77f98d50dec26c0df0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-248"}]}],"references":[{"url":"https://github.com/riebl/vanetza/commit/e1a2e2709210d309458c3d77f98d50dec26c0df0","source":"security-advisories@github.com"},{"url":"https://github.com/riebl/vanetza/security/advisories/GHSA-q9fq-3rx9-7xcv","source":"security-advisories@github.com"},{"url":"https://github.com/riebl/vanetza/security/advisories/GHSA-q9fq-3rx9-7xcv","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44983","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.440","lastModified":"2026-05-27T14:16:56.337","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption without requiring unsafe code from the caller. This vulnerability is fixed in 2.6.1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":4.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"},{"lang":"en","value":"CWE-190"}]}],"references":[{"url":"https://github.com/servo/smallbitvec/security/advisories/GHSA-97wc-2hqc-cjgr","source":"security-advisories@github.com"},{"url":"https://github.com/servo/smallbitvec/security/advisories/GHSA-97wc-2hqc-cjgr","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-45298","sourceIdentifier":"security-advisories@github.com","published":"2026-05-26T22:16:43.733","lastModified":"2026-05-27T15:16:30.130","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (the documented quickstart, no DOZZLE_AUTH_PROVIDER set), POST /api/notifications/test-webhook is reachable without authentication and forwards an attacker-controlled URL into a WebhookDispatcher that sends an HTTP POST to the supplied URL with attacker-controlled request headers, and returns the response status code AND up to 1MB of the response body to the caller, when the target replies non-2xx. This vulnerability is fixed in 10.5.2."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/amir20/dozzle/releases/tag/v10.5.2","source":"security-advisories@github.com"},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-3v9w-6365-9w54","source":"security-advisories@github.com"},{"url":"https://github.com/amir20/dozzle/security/advisories/GHSA-3v9w-6365-9w54","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-5260","sourceIdentifier":"secalert@redhat.com","published":"2026-05-26T22:16:44.170","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS#11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2026:20611","source":"secalert@redhat.com"},{"url":"https://access.redhat.com/security/cve/CVE-2026-5260","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2467450","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-9584","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T22:16:44.300","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://code-projects.org/","source":"cna@vuldb.com"},{"url":"https://github.com/MyMySSS/CVE123/blob/main/cve3/CVE_Submission.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817933","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365640","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365640/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9603","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T22:16:44.467","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A security vulnerability has been detected in SourceCodester eDoc Doctor Appointment System 1.0. This affects an unknown part of the file /admin/delete-session.php. The manipulation of the argument ID leads to missing authorization. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"},{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9603-Missing-Authorization/Advisory.md","source":"cna@vuldb.com"},{"url":"https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9603-Missing-Authorization/poc.sh","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/817935","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365676","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365676/cti","source":"cna@vuldb.com"},{"url":"https://www.sourcecodester.com/","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9604","sourceIdentifier":"cna@vuldb.com","published":"2026-05-26T23:16:21.433","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affects unknown code of the component AiragModelController. The manipulation of the argument list/queryById results in improper access controls. The attack can be executed remotely. The exploit is now public and may be used. Upgrading to version 3.9.2 is able to resolve this issue. The affected component should be upgraded."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"},{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://github.com/jeecgboot/JeecgBoot/","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9599","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/issues/9599#issuecomment-4385767005","source":"cna@vuldb.com"},{"url":"https://github.com/jeecgboot/JeecgBoot/releases/tag/v3.9.2","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818123","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365677","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365677/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9605","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T00:16:39.157","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. Patch name: 8f03865f37f5d4ffd616fef802acc980be54d300. Applying a patch is the recommended action to fix this issue."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://github.com/HackC0der/CVE-Repos/blob/main/libredwg/libredwg_6d6a339_heap_oob_write_read_2004_compressed_section.dwg","source":"cna@vuldb.com"},{"url":"https://github.com/LibreDWG/libredwg/commit/8f03865f37f5d4ffd616fef802acc980be54d300","source":"cna@vuldb.com"},{"url":"https://github.com/LibreDWG/libredwg/issues/1248","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818197","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365678","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365678/cti","source":"cna@vuldb.com"},{"url":"https://www.gnu.org/","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9606","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T00:16:39.333","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been found in itsourcecode Courier Management System 1.0. Impacted is an unknown function of the file /manage_user.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://itsourcecode.com/","source":"cna@vuldb.com"},{"url":"https://lhzzz08.github.io/posts/cveapplication3/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818198","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365679","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365679/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9607","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T00:16:39.567","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results in sql injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-74"},{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/ltranquility/cve_submit/issues/19","source":"cna@vuldb.com"},{"url":"https://itsourcecode.com/","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818333","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365680","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365680/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-49014","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T02:16:34.180","lastModified":"2026-05-27T14:17:33.440","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry attribute in a crafted NetCDF file. This achieves arbitrary code execution on the server running GDAL. This is in frmts/netcdf/netcdfsg.cpp."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.4,"impactScore":5.9}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/OSGeo/gdal/issues/14594","source":"cve@mitre.org"},{"url":"https://github.com/OSGeo/gdal/issues/14594","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-6565","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T02:16:34.640","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Style Kits – Advanced Theme Styles for Elementor, Elementor Kits & Elementor Patterns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '/wp-json/agwp/v1/tokens/save' endpoint kit title parameter in versions up to, and including, 2.5.0 due to insufficient input sanitization and output escaping in an admin attribute context. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/changeset/3530172/analogwp-templates","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/d6332d57-5832-4093-a609-f9c454452815?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-7493","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T02:16:34.770","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to denial of service in all versions up to, and including, 1.6.11.5. This is due to a publicly accessible REST API endpoint (/wp-json/ssa/v1/async) that calls PHP's sleep() function on a user-supplied delay parameter without any rate limiting. This makes it possible for unauthenticated attackers to exhaust PHP worker processes, denying access to the site to legitimate users."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/simply-schedule-appointments/tags/1.6.11.2/includes/class-async-action-model.php#L173","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ae66228e-d086-44fd-8acb-5a99482cedfb?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-9156","sourceIdentifier":"3938794e-25f5-4123-a1ba-5cbd7f104512","published":"2026-05-27T02:16:35.003","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Tanium addressed a denial of service vulnerability in Tanium Server."}],"metrics":{"cvssMetricV31":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","description":[{"lang":"en","value":"CWE-772"}]}],"references":[{"url":"https://security.tanium.com/TAN-2026-013","source":"3938794e-25f5-4123-a1ba-5cbd7f104512"}]}},{"cve":{"id":"CVE-2026-9207","sourceIdentifier":"3938794e-25f5-4123-a1ba-5cbd7f104512","published":"2026-05-27T02:16:35.130","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Tanium addressed an unauthorized code execution vulnerability in Connect."}],"metrics":{"cvssMetricV31":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"3938794e-25f5-4123-a1ba-5cbd7f104512","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://security.tanium.com/TAN-2026-014","source":"3938794e-25f5-4123-a1ba-5cbd7f104512"}]}},{"cve":{"id":"CVE-2026-9608","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:35.247","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":1.9,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N","baseScore":2.4,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":1.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:M/C:N/I:P/A:N","baseScore":3.3,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"MULTIPLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.4,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"},{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/QianFox/FoxCMS/","source":"cna@vuldb.com"},{"url":"https://github.com/QianFox/FoxCMS/issues/2","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818342","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365681","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365681/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9609","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:35.413","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.0,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.2,"impactScore":3.4}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:M/C:P/I:P/A:P","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"MULTIPLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":6.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-640"}]}],"references":[{"url":"https://github.com/QianFox/FoxCMS/","source":"cna@vuldb.com"},{"url":"https://github.com/QianFox/FoxCMS/issues/3","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818343","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365682","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365682/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9627","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:35.583","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-120"}]}],"references":[{"url":"https://github.com/zhouguobing-maker/cve/blob/main/9.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818374","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365683","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365683/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9628","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:35.747","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipulation of the argument PPTP server address/username/password/tunnel name causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/luozhibo-sec/cve/blob/main/10.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818380","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365684","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365684/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9631","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:35.907","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnerability is the function strcpy of the file /goform/formConfigFastDirectionW of the component Web Management Interface. Performing a manipulation of the argument Profile results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is now public and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/zhouguobing-maker/cve/blob/main/11.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818375","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365740","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365740/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9632","sourceIdentifier":"cna@vuldb.com","published":"2026-05-27T02:16:36.067","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the function strcpy of the file /goform/formGroupConfig of the component Web Management Interface. Executing a manipulation of the argument Profile can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used."}],"metrics":{"cvssMetricV40":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"PROOF_OF_CONCEPT","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"cna@vuldb.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"cna@vuldb.com","type":"Secondary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@vuldb.com","type":"Primary","description":[{"lang":"en","value":"CWE-119"},{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://github.com/luozhibo-sec/cve/blob/main/12.md","source":"cna@vuldb.com"},{"url":"https://vuldb.com/submit/818383","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365741","source":"cna@vuldb.com"},{"url":"https://vuldb.com/vuln/365741/cti","source":"cna@vuldb.com"}]}},{"cve":{"id":"CVE-2026-9022","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T04:16:31.730","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Splide Carousel Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'url' Block Attribute in all versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. The injected payload must be published before it executes for site visitors, which requires an editor or administrator to approve and publish the contributor's post."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/splide-carousel/tags/1.7.1/build/carousel-item/index.js#L1","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/splide-carousel/tags/1.7.1/build/carousel/view.js#L1","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3537643%40splide-carousel&new=3537643%40splide-carousel&sfp_email=&sfph_mail=","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/268f2ae1-5360-4ec5-bcd9-dc3ab11396dc?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2025-14481","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T05:16:19.950","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Yoast SEO plugin for WordPress is vulnerable to Insecure Direct Object References in all versions up to, and including, 26.5. This is due to insufficient authorization checks in the Meta Search REST API endpoint that fail to verify post ownership. This makes it possible for authenticated attackers, with Contributor-level access and above, to read sensitive SEO metadata from any post on the site via the 'post_id' parameter, including posts owned by other users, private posts, and draft posts."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://github.com/Yoast/wordpress-seo/pull/22797","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wordpress-seo/tags/26.4/src/routes/meta-search-route.php#L56","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wordpress-seo/trunk/src/routes/meta-search-route.php#L56","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset/3412286/wordpress-seo#file163","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/04b2123d-ae0c-4984-95f5-7040f8604c92?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-6287","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T05:16:22.660","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The ShopLentor - WooCommerce Builder for Elementor & Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blockUniqId' block attribute in multiple Product Gride blocks in versions up to, and including, 3.3.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/changeset/3521229/woolentor-addons","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/b2d75e43-cd46-4c23-bea4-3564e0334a32?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-9236","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T05:16:23.280","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The CM Ad Changer – A simple tool to control and optimize your site's banners plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.7. This is due to missing or incorrect nonce validation on the cmac_campaigns_action function. This makes it possible for unauthenticated attackers to permanently delete arbitrary advertising campaigns, including their associated banner records and uploaded files via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/cm-ad-changer/tags/2.0.7/backend/cm-ad-changer-backend.php#L167","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/cm-ad-changer/tags/2.0.7/backend/cm-ad-changer-backend.php#L177","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/cm-ad-changer/tags/2.0.7/shared/classes/cmac-data.php#L363","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3544026%40cm-ad-changer&new=3544026%40cm-ad-changer&sfp_email=&sfph_mail=","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/a335c917-3fff-4079-bb38-64cd665c5c38?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-6268","sourceIdentifier":"contact@wpscan.com","published":"2026-05-27T07:16:12.113","lastModified":"2026-05-27T14:55:09.597","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The EventPress WordPress theme before 22.2 does not sanitize or escape the 'id' parameter in the eventpress_customizer_notify_dismiss_action AJAX handler before outputting it back in the response, allowing unauthenticated attackers to perform Reflected Cross-Site Scripting attacks against logged-in users."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://wpscan.com/vulnerability/77192aeb-8e4b-4057-b5d7-2b95da634edd/","source":"contact@wpscan.com"}]}},{"cve":{"id":"CVE-2026-7614","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:13.753","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Old Posts Highlighter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to missing or incorrect nonce validation on the OPH_options function. This makes it possible for unauthenticated attackers to update the plugin's configuration settings without authorization via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/old-posts-highlighter/tags/1.0.3/OPH_admin.php#L163","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/old-posts-highlighter/tags/1.0.3/OPH_admin.php#L37","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/old-posts-highlighter/trunk/OPH_admin.php#L163","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/old-posts-highlighter/trunk/OPH_admin.php#L37","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c186d5eb-abc2-47bd-9d3c-2b2f24d2f87e?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8040","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:13.923","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The faq shortocde plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'color' shortcode attribute in the 'faq' shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/faq-shortcode/tags/1.0/faq.php#L65","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/faq-shortcode/trunk/faq.php#L65","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ef6ce2ef-f810-4f8c-a0bd-785a28131213?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8048","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.053","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The My Email Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'subject' shortcode attribute in the 'my-email' shortcode in all versions up to, and including, 0.91 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/my-email-shortcode/tags/0.91/my-email-shortcode.php#L37","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/my-email-shortcode/trunk/my-email-shortcode.php#L37","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/6c9f5515-cdf5-4883-bdeb-1de53bcc615a?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8698","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.177","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Cryptocurrency Prijsvergelijking Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting in version 1.0. This is due to insufficient output escaping in the as_get_coin_shortcode() function, which renders the 'width' (and 'height') shortcode attribute directly into the style attribute of an <iframe> element without applying any escaping function such as esc_attr(). An attacker-controlled value like '100px;\"onload=\"alert(1)\" x=\"' terminates the style attribute prematurely and injects an arbitrary HTML attribute into the iframe tag. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/cryptocurrency-prijsvergelijking-widget/trunk/functions.php#L138","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/cryptocurrency-prijsvergelijking-widget/trunk/functions.php#L157","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/058e47cd-55c8-48b3-8aa6-ef299886061d?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8701","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.303","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The GNTT Post Title Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting in version 1.0 via the `title-ticker-slide`, `title-ticker-fade`, and `title-ticker-typing` shortcodes. This is due to insufficient input sanitization and output escaping on shortcode attributes (notably `border`, `width`, `height`, `header_background`, `header_text_color`, and `id`) within the `gntt_title_ticker_slide()`, `gntt_title_ticker_fade()`, and `gntt_title_ticker_typing()` functions. None of these attribute values are passed through `esc_attr()` or any other escaping function before being concatenated into HTML output. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/gntt-post-title-ticker/trunk/gntt-post-title-ticker.php#L29","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/gntt-post-title-ticker/trunk/gntt-post-title-ticker.php#L56","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/37f8eced-905c-4623-b382-055561fd25a0?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8702","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.427","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The GBI To Print plugin for WordPress is vulnerable to Stored Cross-Site Scripting in version 1.0 via the 'div' attribute of the 'gbitoprint' shortcode. This is due to insufficient output escaping in the gbi_toprint_shortcode() function, which concatenates the raw shortcode attribute value directly into an HTML attribute without applying esc_attr() or any other sanitization. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/gbi-to-print/trunk/gbitoprint.php#L86","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/28102544-3a33-4f15-af62-714e7dab42b7?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8703","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.547","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Endless Scroll plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/endless-scroll/trunk/index.php#L54","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/endless-scroll/trunk/index.php#L58","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/0b56f54b-978e-41ea-8cbe-846facb71cd3?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8707","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.670","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The NS Product icon badge plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF in all versions up to, and including, 1.2.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/product-icon-badge/tags/1.2.4/ns_IBA_mainOptions/ns_addNewOptionsPage.php#L101","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/product-icon-badge/tags/1.2.4/ns_IBA_mainOptions/ns_addNewOptionsPage.php#L123","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/product-icon-badge/tags/1.2.4/ns_IBA_mainOptions/ns_addNewOptionsPage.php#L209","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/product-icon-badge/tags/1.2.4/ns_IBA_mainOptions/ns_addNewOptionsPage.php#L228","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/d1c1847c-8cc9-4080-8da5-7364c4358034?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8708","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.807","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Genzel breadcrumbs plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to missing or incorrect nonce validation on the _options_page function. This makes it possible for unauthenticated attackers to update the plugin's breadcrumb configuration, including templates, delimiter, home label, home URI, and breadcrumb rules via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/genzel-breadcrumbs/trunk/gb.class.php#L412","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/genzel-breadcrumbs/trunk/gb.class.php#L424","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/genzel-breadcrumbs/trunk/page-options.php#L16","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/e9e4ffa9-9f61-42e8-85f5-1dea499a63f7?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8760","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:14.927","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Login with OTP plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.6. This is due to an incomplete fix for CVE-2024-11178: the rate-limit/lockout check added to `otpl_login_action()` was placed only inside the OTP-generation branch and is never evaluated on the OTP-validation branch, and the generated 6-digit OTP additionally has no expiration. This makes it possible for unauthenticated attackers to brute-force the 900,000-value OTP space for any user account (including administrators) and obtain a valid `wp_set_auth_cookie()` session, leading to full site compromise."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-307"}]}],"references":[{"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-11178","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/tags/1.6/lib/otpl-class.php#L361","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/tags/1.6/lib/otpl-class.php#L419","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/tags/1.6/lib/otpl-class.php#L424","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/tags/1.6/lib/otpl-class.php#L427","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/trunk/lib/otpl-class.php#L361","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/trunk/lib/otpl-class.php#L419","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/trunk/lib/otpl-class.php#L424","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/otp-login/trunk/lib/otpl-class.php#L427","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ad22cb24-e6a0-456f-afe8-88a39acd97d3?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8787","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.060","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.1.1. This is due to the `firebase_auth()` function authenticating the request as the WordPress user whose email is supplied in the `user_email` POST parameter without verifying ownership of that email (no Firebase ID token signature/issuer/audience verification). This makes it possible for authenticated attackers, with Subscriber-level access and above, to log in as an arbitrary existing user — including an Administrator — by submitting that user's email address to the `acb_firebase_auth` AJAX action, resulting in full account takeover."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-269"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/admin-chat-box/tags/3.1.1/inc/ACB_AjaxHandler.php#L237","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/admin-chat-box/tags/3.1.1/inc/ACB_AjaxHandler.php#L338","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/admin-chat-box/trunk/inc/ACB_AjaxHandler.php#L237","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/admin-chat-box/trunk/inc/ACB_AjaxHandler.php#L338","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/90783d75-a255-4133-ac7b-32e0a70c8c69?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8837","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.187","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WP Iframe Geo Style for Amazon affiliates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'adid' Shortcode Attribute in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/wp-iframe-geo-style-for-amazon-affiliates/trunk/index.php#L110","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-iframe-geo-style-for-amazon-affiliates/trunk/index.php#L42","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/030d65bb-ec5b-4d26-8f59-5db9a9005ba6?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8842","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.307","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Google+ Link Name plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gplusnamelink' shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes ('id' and 'name') in the gplusnamelink_generate() function, which are concatenated directly into the rendered HTML without calling esc_attr() or esc_html(). This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/google-plus-name-link-popup-badge/trunk/gplusnamelink.php#L15","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/google-plus-name-link-popup-badge/trunk/gplusnamelink.php#L19","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/1643fe92-961c-40de-93c1-78cfeb09506d?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8844","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.427","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Responsive Check plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rspcheck' shortcode in versions up to, and including, 0.0.3. This is due to insufficient input sanitization and output escaping on the 'url' (and 'button') shortcode attributes in the rspc_check_shortcode() function, which are echoed directly into iframe src attributes without esc_attr() or esc_url(). This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/responsive-checker-real-time/trunk/responsive-check.php#L14","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/responsive-checker-real-time/trunk/responsive-check.php#L25","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/responsive-checker-real-time/trunk/responsive-check.php#L54","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/d1d571e3-cf6d-4e9b-a3d7-e7e19497b5a9?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8845","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.570","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Islamic Database plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'islamicDB-roqya' shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user-supplied 'width' and 'height' shortcode attributes within the islamicDB_sc_quran_qari_roqya() function, which are concatenated directly into HTML iframe attribute values. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/islamic-database/trunk/islamic_database.php#L561","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/islamic-database/trunk/islamic_database.php#L567","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/98c3762b-9dcd-4931-846e-3f54fe2bf5e2?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8846","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.743","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Tuxquote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'TUXQUOTE' shortcode in versions up to, and including, 1.3. This is due to insufficient input sanitization and output escaping on user supplied attributes ('title', 'align', and 'width') in the tuxquote_build_format() function, which are concatenated into the rendered HTML without being passed through esc_attr() or esc_html(). This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/tuxquote/tags/1.3/tuxquote.php#L81","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/tuxquote/tags/1.3/tuxquote.php#L91","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/7ea6079f-45a1-438f-890f-36457b7468ec?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8847","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.863","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Dideo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'dideo' shortcode in version 1.0. This is due to insufficient input sanitization and output escaping on the 'id' shortcode attribute, which is interpolated directly into an HTML iframe 'src' attribute without escaping in the dideo() shortcode handler. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/wp-dideo/trunk/dideo.php#L13","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-dideo/trunk/dideo.php#L17","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/d7b11375-a709-4926-8065-a9dfc9fa4f9a?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8866","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:15.983","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The jQuery googleslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'googleslides' shortcode in all versions up to, and including, 1.3. This is due to insufficient input sanitization and output escaping on user supplied attributes (userid, albumid, authkey, imgmax, maxresults, random, caption, albumlink, time, and fadespeed) in the googleslides_handler() function, which interpolates the attribute values directly into single-quoted HTML attributes without using esc_attr(). This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/jquery-googleslides/tags/1.3/init.php#L39","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/jquery-googleslides/tags/1.3/init.php#L52","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/3f8e363d-60ec-4e86-856c-c4ffc11fe690?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8867","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.103","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Post Category Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'postcategorygallery' shortcode in versions up to, and including, 1.0.0. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes (such as total_width, color_scheme, and caption_font_size) inside the sc_horcatbar() function, which are concatenated directly into HTML attribute values. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/post-category-gallery/trunk/horcatbar.php#L79","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/post-category-gallery/trunk/horcatbar.php#L97","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/f439718e-4a3d-4dc9-a16c-6b655480dde6?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8868","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.220","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Single Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'single-mailchimp' shortcode in all versions up to, and including, 1.4. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes (autocomplete, label, placeholder, btn_text, success_msg, error_msg) which are concatenated directly into HTML output by the single_mailchimp() function in shortcodes.php. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/single-mailchimp/trunk/shortcodes.php#L23","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/single-mailchimp/trunk/shortcodes.php#L9","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/070616c9-b6a3-43d9-a82d-5cbcffc39ad9?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8869","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.347","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Mutual Funds Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' shortcode attribute in versions up to, and including, 1.2.1. This is due to insufficient input sanitization and output escaping on the user supplied 'title' attribute in the mfd_shortcode() function, which is concatenated directly into the HTML output within a <caption> element. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/mutual-funds-data/trunk/mutual-funds-data.php#L119","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/mutual-funds-data/trunk/mutual-funds-data.php#L88","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/596d3b55-e35b-4d77-9915-1091eafbb3ff?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8870","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.500","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Team Master – A Modern WordPress Team Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/team-master/trunk/public/partials/team-master-public-shortcode.php#L106","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/2990a3ba-3dad-4204-bccc-ed5c23d9d581?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8871","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.623","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Formidable Kinetic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'kinetic_link' shortcode in versions up to, and including, 1.1.01. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes (notably 'window', 'class', and 'label') in the FrmKinetic::link() function, which are concatenated directly into HTML attributes of an anchor tag. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/formidable-kinetic/trunk/formidable-kinetic.php#L34","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/formidable-kinetic/trunk/formidable-kinetic.php#L70","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/6f849ec6-1c90-4f98-a367-fea87ddc5870?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8872","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.743","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Animate Your Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'animation-set' shortcode in versions up to, and including, 1.0.0. This is due to insufficient input sanitization and output escaping on user supplied attributes in the shortcode_args_to_html_attrs() function, which concatenates shortcode attribute values directly into double-quoted HTML attributes without calling esc_attr(). This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/animate-your-content/trunk/plugin.php#L116","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/animate-your-content/trunk/plugin.php#L135","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/animate-your-content/trunk/plugin.php#L88","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/5d7fd79f-8113-4143-b630-46531e574fc9?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8873","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:16.890","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Content Slideshow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/content-slideshow/tags/2.4.1/slideshow-widget-shortcode.php#L14","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/content-slideshow/tags/2.4.1/slideshow-widget-shortcode.php#L143","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/9548f647-9fcb-481c-874e-0184609283fe?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8875","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.010","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Easy Prism Syntax Highlighter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'code' (and 'c') shortcode in versions up to, and including, 1.0.2. This is due to insufficient input sanitization and output escaping on user supplied shortcode attributes in the shortcode() function, which concatenates the first positional attribute directly into the class attribute of the generated <pre>/<code> HTML without calling esc_attr() or any other escaping function. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/easy-prism-syntax-highlighter/trunk/PrismSyntaxHighlither.php#L116","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/easy-prism-syntax-highlighter/trunk/PrismSyntaxHighlither.php#L123","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/aa690c4d-15c4-43bc-b8f7-017b7741c5cd?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8877","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.130","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Responsive Video Embedder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rem_video' shortcode in versions up to, and including, 0.1. This is due to insufficient input sanitization and output escaping on user supplied attributes (notably 'id' and 'list') in the video_shortcode() function, which are concatenated directly into an HTML iframe's src attribute without escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/responsive-video-embedder/trunk/responsive-video-embedder.php#L152","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/responsive-video-embedder/trunk/responsive-video-embedder.php#L167","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/00f5cf90-cc63-4e51-b1be-1152abefc59d?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8884","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.250","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Instant-Quote.co Quotation Page plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 1.3.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. A Contributor-level user can trigger execution against higher-privileged users by embedding the malicious shortcode in a post submitted for review, causing the injected scripts to execute when an administrator previews or views the post."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/iq-quotation-page/trunk/IQ-quotation-page.php#L339","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/iq-quotation-page/trunk/IQ-quotation-page.php#L429","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/f7140053-a3c3-44c4-bc83-2e9b9e8853d6?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8886","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.363","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The hk_shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title-plane' shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes in the huankong_post_short_title_plane() function, where the 'title' attribute is concatenated directly into HTML output without any escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/hk-shortcode/tags/1.0/function/shortcode.php#L6","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/hk-shortcode/tags/1.0/function/shortcode.php#L8","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ed1a7872-e268-460d-82f1-b047335a9977?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8887","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.487","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Listen Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'listen' shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes (src, start, end) in the listenEmbedJS() function, which are echoed inside a single-quoted HTML attribute without escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/listen-shortcode/trunk/heganoo-shortcode.php#L22","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/listen-shortcode/trunk/heganoo-shortcode.php#L43","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/2c557615-148d-43a2-9fed-5f41faa7c64f?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8891","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.603","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The BitForm plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bitform' shortcode in versions up to, and including, 1.1.0. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes ('width' and 'height') in the Shortcode::shortcode() function, which are interpolated directly into the 'style' attribute of an <iframe> element. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/bitform/tags/1.1.0/Common/Shortcode.php#L13","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/bitform/tags/1.1.0/Common/Shortcode.php#L17","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/bitform/tags/1.1.0/index.php#L54","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/71167dec-38ec-4eb3-8fab-25eca0f8b071?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8894","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.727","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The iWR Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `iwrtooltip` shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user supplied attributes in the iwr_tooltip() shortcode handler — the `title` attribute is concatenated directly into an HTML attribute without esc_attr() or any other escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/iwr-tooltip/tags/1.0/iwr-tooltip.php#L37","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/iwr-tooltip/tags/1.0/iwr-tooltip.php#L41","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/9dd6433f-cc12-47c7-a641-3da8a6b0f15b?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8897","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.847","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Shortcode Buddy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, and including, 0.1.9.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/shortcode-buddy/trunk/shortcodes/shortcodes.php#L150","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/shortcode-buddy/trunk/shortcodes/shortcodes.php#L156","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/2a5eeae6-313a-4244-9d6a-583828521a3b?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8898","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:17.963","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Events In City plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'org-events' shortcode in versions up to, and including, 3.0. This is due to insufficient input sanitization and output escaping on user supplied attributes (such as 'organizer_id', 'width', 'height', 'transparency', 'header', 'border', and 'layout') in the org_event_scode() function. The attribute values are concatenated directly into HTML attributes without esc_attr(). This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/events-in-city/tags/3.0/ae_org_widget.php#L144","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/events-in-city/tags/3.0/ae_org_widget.php#L156","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/4281ad41-d9a4-4503-9238-24990641a9bf?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8899","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.083","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Auto Thumbnail plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'thumbnails' shortcode in all versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on the shortcode's 'width' and 'height' attributes in the athn_thumbnails() function, which are concatenated directly into an HTML <img> tag. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/automatic-thumbnail/tags/1.0/index.php#L13","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/automatic-thumbnail/tags/1.0/index.php#L34","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/f0cc349a-96f9-4b11-a0b4-28bc4ccc022c?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8903","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.210","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Two-factor authentication (formerly IP Vault) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipv_save_changes function. This makes it possible for unauthenticated attackers to modify the plugin's firewall and two-factor authentication settings — including the operating mode, request include/exclude rules, authentication slug, and log retention period — potentially disabling protection entirely via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/ip-vault-wp-firewall/trunk/includes/admin-settings.php#L129","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/ip-vault-wp-firewall/trunk/includes/admin-settings.php#L14","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/ip-vault-wp-firewall/trunk/ip-vault.php#L482","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/5a58f809-d051-4841-a1da-7bc1cf59e1a2?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8911","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.330","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WP AutoBuzz plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. This vulnerability bypasses WordPress's DISALLOW_UNFILTERED_HTML protection because the unsanitized value is written directly via update_option at the plugin level, entirely outside of WordPress post content handling."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/wp-autobuzz/tags/1.1.1/wp-autobuzz.php#L77","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-autobuzz/tags/1.1.1/wp-autobuzz.php#L81","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-autobuzz/tags/1.1.1/wp-autobuzz.php#L93","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/481dc27b-0d64-49cc-8d67-50fa53636398?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8938","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.453","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The auto making JSON-LD plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.5.3. This is due to missing or incorrect nonce validation on the amJL_certification function. This makes it possible for unauthenticated attackers to update the plugin's license key option, and subsequently trigger license validation and pro feature installation on the victim site without the administrator's consent via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. Successful exploitation can trigger downstream calls to amJL_is_license_valid() and amJL_download_and_install_pro_features(), meaning the impact extends beyond a simple settings change to unauthorized installation of plugin components."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/auto-making-json-ld/tags/4.5.3/settings/certification.php#L14","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/auto-making-json-ld/tags/4.5.3/settings/certification.php#L16","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/24d84e7c-7a7a-4b29-95ee-60718c48840f?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8939","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.570","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Search Simple Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 0.2. This is due to missing or incorrect nonce validation on the search_simple_fields_options() function in functions_admin.php. This makes it possible for unauthenticated attackers to modify the plugin's settings — including post types to search in, custom fields, media fields and the custom media function name — via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/search-simple-fields/tags/0.2/functions_admin.php#L16","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/search-simple-fields/tags/0.2/functions_admin.php#L21","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/1d7ffc0b-2706-4707-9b8f-edcb418058ca?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8941","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.687","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The CDN Linker lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the ossdl_off_options() function. This makes it possible for unauthenticated attackers to update the plugin's settings — including the CDN URL used to rewrite all static asset references on the site — via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/ossdl-cdn-off-linker/tags/1.3.1/wp-cdn-linker.php#L39","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/ossdl-cdn-off-linker/tags/1.3.1/wp-cdn-linker.php#L43","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/3d5bc7a0-89b8-47fc-a6fa-7eb141d2be31?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8943","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.803","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The GoStats for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation on the gostats_manage() function. This makes it possible for unauthenticated attackers to update the plugin's settings (gostats_siteid and gostats_server options) via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/gostats-for-wordpress/trunk/GoStats.php#L26","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/gostats-for-wordpress/trunk/GoStats.php#L27","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/3efaf738-1ab8-4a22-9536-157c346e9536?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8994","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:18.917","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.3.3. The `ajaxLoginWithNear()` function — registered as a `wp_ajax_nopriv` action and therefore reachable by unauthenticated users — accepts an attacker-supplied `account` POST parameter and issues a valid WordPress authentication cookie based solely on a substring check for `.near`, with no nonce verification, cryptographic signature validation, challenge-response exchange, or any proof that the requester controls the corresponding NEAR wallet. This makes it possible for unauthenticated attackers to log in as any existing WordPress user, including administrators, whose email address matches the deterministic `<account>@near.org` pattern derived from the supplied `account` value. If no matching user exists, the handler automatically creates and authenticates a new WordPress account for the attacker-controlled identifier, providing a further avenue for unauthorized account creation."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/near-login/trunk/Controllers/UserLoginController.php#L16","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/near-login/trunk/Controllers/UserLoginController.php#L29","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/near-login/trunk/Controllers/UserLoginController.php#L46","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/near-login/trunk/Controllers/UserLoginController.php#L76","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/f1eacb72-df11-4a3b-9064-f8f776f3522b?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-9014","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:19.033","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WP Promoter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reset_stats() function in versions up to, and including, 1.3. The function is hooked to both the wp_ajax_wpp-reset_stats and wp_ajax_nopriv_wpp-reset_stats actions and contains no authentication, authorization, or nonce validation. This makes it possible for unauthenticated attackers to reset the plugin's bar and popup statistics by deleting the wpp_bar and wpp_popup options."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/inc/class-wpp-ajax.php#L23","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/inc/class-wpp-ajax.php#L28","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ce546f2e-5323-44b9-b980-5619f2db2944?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-9200","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T07:16:19.157","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Query Shortcode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 0.2.1 via the shortcode function. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary .php files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where .php file types can be uploaded and included."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-98"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/query-shortcode/trunk/init.php#L178","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/query-shortcode/trunk/init.php#L56","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/query-shortcode/trunk/init.php#L97","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/28df760b-6b15-41ca-b93f-9d24dbbd9fc4?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2025-41669","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:39.710","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root privileges on the PLC device. A successful exploitation may allow to install a manipulated APP package, potentially impacting integrity and availability of the PLCnext Control."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-347"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-050/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2025-41670","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:39.920","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the filesystem. The affected service processes data from locations that are not sufficiently protected against modification by low-privileged users. As the service runs with elevated privileges, successful exploitation may result in a local privilege escalation."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-427"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-050/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-2030","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.123","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WPBakery Page Builder Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `[lvca_carousel]` and `[lvca_posts_carousel]` shortcode attributes in all versions up to, and including, 3.9.4 due to insufficient input sanitization and output escaping. Specifically, shortcode attributes are encoded with `wp_json_encode()` and output into single-quoted `data-settings` HTML attributes without using `esc_attr()`, allowing attackers to break out of the attribute by injecting single quotes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/addons-for-visual-composer/tags/3.9.4/includes/addons/carousel/class-lvca-carousel.php#L55","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/addons-for-visual-composer/tags/3.9.4/includes/addons/posts-carousel/class-lvca-posts-carousel.php#L113","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ac1493dc-a90a-4427-a631-af5da65e1d6c?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3001","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.440","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Gutenverse plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's' parameter in all versions up to, and including, 3.4.6 due to insufficient input sanitization and output escaping. Specifically, the `render_content()` method in `class-search-result-title.php` outputs the value of `get_query_var('s')` directly into the page HTML without applying `esc_html()` or any other escaping function. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages via a crafted URL that execute if a user clicks the link, provided the `gutenverse/search-result-title` block is present on the site's search results template."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/gutenverse/trunk/includes/block/class-search-result-title.php#L29","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset/3468383/","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/23518a21-7b76-4edb-9a35-b6f623ed50a7?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3279","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.573","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Enable jQuery Migrate Helper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `downgrade_jquery_version()` function in all versions up to, and including, 1.4.1. This is due to the function only verifying a nonce without checking user capabilities. This makes it possible for authenticated attackers, with Subscriber-level access and above, to downgrade the site-wide jQuery version from 3.7.1 to the legacy 1.12.4-wp release, which has knowns security vulnerabilities."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/enable-jquery-migrate-helper/tags/1.4.1/class-jquery-migrate-helper.php#L225","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/enable-jquery-migrate-helper/tags/1.4.1/class-jquery-migrate-helper.php#L256","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/enable-jquery-migrate-helper/trunk/class-jquery-migrate-helper.php#L225","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/enable-jquery-migrate-helper/trunk/class-jquery-migrate-helper.php#L256","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/1a74d5f4-1dd8-4d49-b4ce-8ba7ac9cbcc7?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3375","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.707","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the /wp-json/litespeed/v1/notify_ccss and /wp-json/litespeed/v1/notify_ucss REST API endpoints in all versions up to, and including, 7.7. These endpoints accept CSS content from QUIC.cloud callback notifications and store it to disk without sanitization. The stored content is later rendered inline frontend page loads without output escaping. The access control protecting these endpoints is IP-based validation that can potentially be bypassed when the WordPress site is deployed behind a reverse proxy, load balancer, or CDN with certain configurations. This makes it possible for unauthenticated attackers, under certain conditions, to inject arbitrary JavaScript into CCSS/UCSS content."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/cloud.cls.php#L2085","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/css.cls.php#L401","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/css.cls.php#L595","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/optimize.cls.php#L477","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/rest.cls.php#L108","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/litespeed-cache/trunk/src/router.cls.php#L732","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset/3473912/","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/40fa29f5-525a-4986-91f9-0210a7594e46?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3895","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.830","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WPBakery Page Builder Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `lvca_admin_ajax` AJAX action in all versions up to, and including, 3.9.4 due to missing authorization checks and insufficient input sanitization. The AJAX handler verifies a nonce but does not check user capabilities. This makes it possible for authenticated attackers with Subscriber-level access and above to modify plugin settings and inject malicious scripts that execute when administrators access the plugin settings page or when any user visits the frontend."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/addons-for-visual-composer/tags/3.9.4/admin/admin-ajax.php#L64","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/addons-for-visual-composer/tags/3.9.4/admin/views/settings.php#L568","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/addons-for-visual-composer/tags/3.9.4/includes/helper-functions.php#L256","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/ff0d4000-020b-4e22-9362-a8f0f5df321e?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3896","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:40.950","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `lsow_admin_ajax` AJAX action in all versions up to, and including, 3.9.2 due to missing authorization checks and insufficient input sanitization. The AJAX handler verifies a nonce but does not check user capabilities. This makes it possible for authenticated attackers with Subscriber-level access and above to modify plugin settings and inject malicious scripts that execute when administrators access the plugin settings page or when any user visits the frontend."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/livemesh-siteorigin-widgets/tags/3.9.2/admin/admin-ajax.php#L65","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/livemesh-siteorigin-widgets/tags/3.9.2/admin/views/settings.php#L107","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/livemesh-siteorigin-widgets/tags/3.9.2/includes/helper-functions.php#L235","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/a1510984-571b-49ce-9e10-129e2a1aca7b?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3897","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:41.070","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `labb_admin_ajax` AJAX action in all versions up to, and including, 3.9.2 due to missing authorization checks and insufficient input sanitization. The AJAX handler verifies a nonce but does not check user capabilities. This makes it possible for authenticated attackers with Subscriber-level access and above to modify plugin settings and inject malicious scripts that execute when administrators access the plugin settings page or when any user visits the frontend."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/addons-for-beaver-builder/tags/3.9.2/admin/admin-ajax.php#L64","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/addons-for-beaver-builder/tags/3.9.2/admin/views/settings.php#L137","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/addons-for-beaver-builder/tags/3.9.2/includes/helper-functions.php#L248","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/8bc41c61-1d8a-445f-bd70-3b14a40c89d4?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-40810","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.193","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the userinfo endpoint due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40811","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.343","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ssoabstractservice due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40812","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.487","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions sn parameter due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40813","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.630","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions tagid parameter due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40814","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.777","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dataapi.php files _mb24confi_getTagAlarm function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40815","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:41.920","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _mb24api_getUserAccount function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40816","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.060","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the mb24alarm.php files _mb24confi_getTagAlarm function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40817","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.203","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAlarmProfiles function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40818","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.353","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _mb24confi_getDevice function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40819","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.507","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the sync_data24 task due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40821","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.667","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountByID function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40822","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:42.853","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40823","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:43.000","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40824","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:43.147","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view userid parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40825","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:43.307","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view devices parameter due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40826","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T08:16:43.487","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-41009","sourceIdentifier":"security@vmware.com","published":"2026-05-27T08:16:43.647","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"When the director sends a long-running request (e.g. compile_package), the agent's reply JSON is consumed by AgentClient. inject_compile_log (line 332-339) reads response['value']['result']['compile_log_id'] and format_exception (line 318-325) reads exception['blobstore_id']; both pass the agent-supplied string unmodified to download_and_delete_blob(blob_id) (line 344-349), which calls @resource_manager.get_resource(blob_id) and, in an ensure block, @resource_manager.delete_resource(blob_id). Api::ResourceManager forwards the id straight to blobstore.get(id) / blobstore.delete(id). When the director is configured with the local blobstore provider, Blobstore::LocalClient#object_file_path(oid) is File.join(@blobstore_path, oid) (local_client.rb:54-56) with no normalisation, so oid = \"../../jobs/director/config/director.yml\" resolves outside the blobstore root.\n\nAffected versions:\nBOSH Director: All versions prior to v282.1.12"}],"metrics":{"cvssMetricV40":[{"source":"security@vmware.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:P/VC:N/VI:H/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"HIGH","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"security@vmware.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:L","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":0.6,"impactScore":4.7}]},"weaknesses":[{"source":"security@vmware.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://www.cloudfoundry.org/blog/cve-2026-41009-local-blobstore-may-allow-arbitrary-reads-deletes/","source":"security@vmware.com"}]}},{"cve":{"id":"CVE-2026-41704","sourceIdentifier":"security@vmware.com","published":"2026-05-27T08:16:43.843","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"AgentClient#handle_method (lines 264-303) processes every NATS reply. It calls inject_compile_log (line 273) on every response, which reads response['value']['result']['compile_log_id'] (line 332-338) and passes it to download_and_delete_blob. Separately, any response containing 'exception' goes through format_exception (lines 308-325), which reads exception['blobstore_id'] and also calls download_and_delete_blob. That helper (lines 344-349) calls ResourceManager#get_resource(blob_id) and, in an ensure block, ResourceManager#delete_resource(blob_id). ResourceManager (resource_manager.rb:62-70) calls blobstore.delete(id) on the single shared Director blobstore with no UUID-format check, no ownership check, and no namespace prefix.\n\nAffected versions:\nBOSH Director: All versions prior to v282.1.12"}],"metrics":{"cvssMetricV40":[{"source":"security@vmware.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"HIGH","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"security@vmware.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":0.6,"impactScore":4.0}]},"weaknesses":[{"source":"security@vmware.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://www.cloudfoundry.org/blog/cve-2026-41704-compromised-vm-can-make-arbitrary-blobstore-deletes/","source":"security@vmware.com"}]}},{"cve":{"id":"CVE-2026-6169","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:44.810","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The affiliate-toolkit plugin for WordPress is vulnerable to remote code execution in all versions up to, and including, 3.8.5. This is due to the plugin using the BladeOne templating engine's runString() method which compiles user-supplied template content into PHP code and executes it via eval() without sanitization or sandboxing. This makes it possible for authenticated attackers, with Editor-level access and above, to execute arbitrary code on the server by injecting PHP into a plugin template."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/affiliate-toolkit-starter/tags/3.8.5/includes/atkp_posttypes_template.php#L735","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/affiliate-toolkit-starter/tags/3.8.5/includes/helper/atkp_template_helper.php#L1074","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/affiliate-toolkit-starter/tags/3.8.5/lib/bladeone/BladeOne.php#L320","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/b6310a0c-5a96-4dbc-940e-025c9b907c7d?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-7618","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.070","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 2.4.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/tags/2.4.5/api/contactform7.php#L113","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/tags/2.4.5/api/contactform7.php#L117","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/tags/2.4.5/api/index.php#L8","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/trunk/api/contactform7.php#L113","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/trunk/api/contactform7.php#L117","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/envialosimple-email-marketing-y-newsletters-gratis/trunk/api/index.php#L8","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/a7aa2246-aee9-4992-b030-97e78e3b7d22?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8042","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.190","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Github Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'repo' shortcode attribute in the 'github' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N","baseScore":6.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/github-shortcode/tags/0.1/githubshortcode.php#L25","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/github-shortcode/trunk/githubshortcode.php#L25","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c6848b7a-d869-41e7-9f33-01a35b6d4822?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8143","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.317","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The HBook plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'hb_country_iso', 'hb_usa_state_iso', and 'hb_canada_province_iso' parameters in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page (the HBook Customers admin page)."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://codecanyon.net/item/hbook-hotel-booking-system-wordpress-plugin/15059946","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/e1c16bcb-c188-4e01-9d0b-e4e1a1ef82ee?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8832","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.537","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WPCode - Insert Headers and Footers + Custom Code Snippets - WordPress Code Manager plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.3.5 This is due to the 'wpcode' custom post type being registered without a custom capability_type or capability restrictions in the wpcode_register_post_type() function, allowing WordPress core to fall back to standard post capabilities for all creation paths including XML-RPC. This makes it possible for authenticated attackers, with author-level access and above, to create and publish executable PHP snippet posts via XML-RPC wp.newPost, which are then executed server-side via eval() in the run_eval() function when the snippet is rendered through the [wpcode] shortcode."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/insert-headers-and-footers/tags/2.3.5/includes/class-wpcode-snippet-execute.php#L374","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/insert-headers-and-footers/tags/2.3.5/includes/class-wpcode-snippet-execute.php#L415","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/insert-headers-and-footers/tags/2.3.5/includes/execute/class-wpcode-snippet-execute-php.php#L25","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/insert-headers-and-footers/tags/2.3.5/includes/post-type.php#L24","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/insert-headers-and-footers/tags/2.3.5/includes/shortcode.php#L26","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset/3549060/insert-headers-and-footers/trunk/includes/post-type.php","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/changeset?old_path=%2Finsert-headers-and-footers/tags/2.3.5&new_path=%2Finsert-headers-and-footers/tags/2.3.6","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/75a2e8b1-d5e0-4f7b-a70a-f0aadf58c778?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8906","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.663","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The WP Promoter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/admin-wp-promoter.php#L120","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/admin-wp-promoter.php#L45","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/admin-wp-promoter.php#L64","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/wp-promoter/tags/1.3/admin-wp-promoter.php#L66","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/8451fe09-4280-49ef-b088-698cbf40b86b?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-8942","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T08:16:45.787","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The MetaMagic SEO Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.6. This is due to missing or incorrect nonce validation on the metamagic_update_options function. This makes it possible for unauthenticated attackers to modify the plugin's SEO settings, including enabling or disabling the plugin and toggling description and keyword meta tag output via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/metamagic/trunk/metamagic.php#L143","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/metamagic/trunk/metamagic.php#L188","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/a08e4147-9a57-4936-9a18-02110c79a8bb?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2023-52945","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:24.777","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-427"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_26","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-11399","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.297","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to conduct denial-of-service attacks via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":4.2}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-552"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_26","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47267","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.483","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Archiving Pull functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47268","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.620","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Missing authorization vulnerability in AddOns functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47269","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.740","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Cleartext transmission of sensitive information vulnerability in Export Key functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-319"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47270","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.867","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper preservation of permissions vulnerability in Archiving Push functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-281"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47271","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:25.987","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Insufficiently protected credentials vulnerability in IPSpeaker component in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2024-47272","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.100","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect authorization vulnerability in IO Module functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_25","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-10466","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.230","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Safe Access in Synology Safe Access before 1.3.1-0329 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitive information or conduct limited denial-of-service in SRM."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":1.7,"impactScore":3.7}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_11","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-12686","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.357","lastModified":"2026-05-27T17:16:27.797","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security@synology.com","type":"Secondary","description":[{"lang":"en","value":"CWE-120"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_12","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-13167","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.483","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in contact functionality in Synology Contacts before 1.0.10-20659 allows remote authenticated users to read or write specific files containing non-sensitive information via unspecified vectors."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_13","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-13392","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.607","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper check for unusual or exceptional conditions vulnerability in SSO in Synology DiskStation Manager (DSM) before 7.2.2-72806-5 and 7.3.1-86003-1 (7.2.1-69057 is not affected) allows remote attackers to bypass authentication with prior knowledge of the distinguished name (DN)."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":5.9}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_14","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-13593","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.730","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Origin validation error vulnerability in Synology ActiveProtect Agent before 1.1.0-0439 allows local users to write arbitrary files with restricted content when installing."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":4.2}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_15","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-14713","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:26.853","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-749"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_18","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-22741","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T09:16:26.977","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RiceTheme Felan Framework allows Reflected XSS.\n\nThis issue affects Felan Framework: from n/a through 1.1.3."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/felan-framework/vulnerability/wordpress-felan-framework-plugin-1-1-3-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2025-30028","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:27.370","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_02","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-52747","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T09:16:27.493","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jthemes Themebox - Digital Products Ecommerce allows Reflected XSS.\n\nThis issue affects Themebox - Digital Products Ecommerce: from n/a through 1.4.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/theme/themebox/vulnerability/wordpress-themebox-digital-products-ecommerce-theme-1-4-2-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2025-66592","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:27.633","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An origin validation error vulnerability in Synology Active Backup for Business Agent before 3.1.0-4967 allows local users to write arbitrary files with restricted content during installation."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":4.2}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_16","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2025-66593","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:27.760","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content during installation."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":4.2}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_25_17","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2026-2237","sourceIdentifier":"security@synology.com","published":"2026-05-27T09:16:27.877","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local attackers to obtain sensitive information."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":3.6}]},"weaknesses":[{"source":"security@synology.com","type":"Primary","description":[{"lang":"en","value":"CWE-598"}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_26_01","source":"security@synology.com"}]}},{"cve":{"id":"CVE-2026-40827","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.013","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _RemoveRequest function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deleting entries in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40828","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.163","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DeleteSysLogEntry function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deleting entries in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40829","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.313","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the view.html.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40830","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.467","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the admin.mbnetj.php files UpdateParam function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40831","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.617","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the Easy View due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40832","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.800","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDevicegroups function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40833","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:28.950","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40834","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.100","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash_layout.php files saveDashboardLayout function due to improper neutralization of special elements in a SQL INSERT command allowing for reading the whole database and inserting entries into a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40835","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.253","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the saveObjectFromData function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40836","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.400","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the inmessage model due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deleting entries in a non critical table. This can result in a total loss of confidentiality and some loss of integrity."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40837","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.550","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getProjectScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40838","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.717","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDeviceScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40839","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:29.867","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getComponentScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40840","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.020","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the VerifyCreateLicences function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40841","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.170","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getProjectTags function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40842","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.310","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getWidgetTags function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40843","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.490","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the alarming view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40844","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.650","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dashboard view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40845","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.810","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the devices_configuration view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40846","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:30.957","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40847","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.103","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system_tag view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40848","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.250","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the tag view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40849","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.397","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the user_alarmprofile view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40850","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.547","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountData function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality."}],"metrics":{"cvssMetricV40":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-044/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40851","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.687","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability."}],"metrics":{"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":5.9}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-1287"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-054/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-40852","sourceIdentifier":"info@cert.vde.com","published":"2026-05-27T09:16:31.817","lastModified":"2026-05-27T14:53:22.863","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A highly authenticated attacker can alter the config generator injecting a payload into future created configurations. The device is not correctly checking this configuration value before passing it to an system execute leading to code execution. This can result in a total loss of confidentiality, integrity and availability."}],"metrics":{"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://www.certvde.com/en/advisories/VDE-2026-054/","source":"info@cert.vde.com"}]}},{"cve":{"id":"CVE-2026-48877","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T09:16:31.977","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Insertion of Sensitive Information Into Sent Data vulnerability in Tom GenerateBlocks allows Retrieve Embedded Sensitive Data.\n\nThis issue affects GenerateBlocks: from n/a through 2.1.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/generateblocks/vulnerability/wordpress-generateblocks-plugin-2-1-0-sensitive-data-exposure-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-48968","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T09:16:32.120","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Averta Master Slider allows DOM-Based XSS.\n\nThis issue affects Master Slider: from n/a through 3.10.8."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.3,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/master-slider/vulnerability/wordpress-master-slider-plugin-3-10-8-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2025-0898","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T11:16:16.633","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Arbitrary File Reading in all versions up to, and including, 1.4.7 via the Draw SVG widget. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-73"}]}],"references":[{"url":"https://elementor.wpxpro.com/","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/1f87298b-8dae-4201-8f3b-477eaab3663d?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-2280","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T11:16:17.873","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The rexCrawler plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/rexcrawler/tags/1.0.15/admin_main.php#L108","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/rexcrawler/tags/1.0.15/admin_main.php#L239","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/rexcrawler/trunk/admin_main.php#L108","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/rexcrawler/trunk/admin_main.php#L239","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/9ec307de-600c-4fb2-b474-db9b674d4ead?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-2288","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T11:16:17.993","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The myLinksDump plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link_title' parameter in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.7,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/mylinksdump/tags/1.6/myLinksDump.php#L325","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/mylinksdump/tags/1.6/myLinksDump.php#L557","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/mylinksdump/trunk/myLinksDump.php#L325","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/mylinksdump/trunk/myLinksDump.php#L557","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/efd18739-3cd1-486c-9587-8deba5a0940e?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3012","sourceIdentifier":"secalert@redhat.com","published":"2026-05-27T11:16:18.357","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect network traffic could exploit this behavior to supply a malicious certificate authority certificate, potentially allowing interception or spoofing of trusted communications."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":5.8}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-3012","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447319","source":"secalert@redhat.com"},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=16003","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-3348","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T11:16:18.470","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The MinhNhut Link Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's settings (Description, Title, and other fields) in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the redirect page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N","baseScore":4.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/classes.php#L100","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/templates/default/index.php#L7","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/b9458918-beaf-4bad-8abd-521547df9497?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-3349","sourceIdentifier":"security@wordfence.com","published":"2026-05-27T11:16:18.593","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The MinhNhut Link Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter on the redirect page in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"security@wordfence.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/classes.php#L263","source":"security@wordfence.com"},{"url":"https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/templates/default/index.php#L19","source":"security@wordfence.com"},{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c11644-b9b5-40c7-b558-995b621fc5d6?source=cve","source":"security@wordfence.com"}]}},{"cve":{"id":"CVE-2026-42725","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:18.827","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout Files Upload for WooCommerce: from n/a through <= 2.2.5."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/checkout-files-upload-woocommerce/vulnerability/wordpress-checkout-files-upload-for-woocommerce-plugin-2-2-5-insecure-direct-object-references-idor-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42726","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:18.950","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifieds-plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AWP Classifieds: from n/a through <= 4.4.5."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/another-wordpress-classifieds-plugin/vulnerability/wordpress-awp-classifieds-plugin-4-4-5-broken-access-control-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42727","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.060","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows Blind SQL Injection.This issue affects Active Products Tables for WooCommerce: from n/a through <= 1.0.8."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/profit-products-tables-for-woocommerce/vulnerability/wordpress-active-products-tables-for-woocommerce-plugin-1-0-8-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42728","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.180","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HT Plugins HT Contact Form 7 ht-contactform allows Stored XSS.This issue affects HT Contact Form 7: from n/a through <= 2.8.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/ht-contactform/vulnerability/wordpress-ht-contact-form-7-plugin-2-8-2-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42729","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.297","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Property Hive PropertyHive propertyhive allows DOM-Based XSS.This issue affects PropertyHive: from n/a through <= 2.2.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/propertyhive/vulnerability/wordpress-propertyhive-plugin-2-2-2-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42730","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.413","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Blind SQL Injection.This issue affects MasterStudy LMS: from n/a through <= 3.7.29."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L","baseScore":8.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.1,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/masterstudy-lms-learning-management-system/vulnerability/wordpress-masterstudy-lms-plugin-3-7-29-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42731","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.600","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect Privilege Assignment vulnerability in miniOrange miniorange otp verification miniorange-otp-verification allows Privilege Escalation.This issue affects miniorange otp verification: from n/a through <= 5.4.9."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/miniorange-otp-verification/vulnerability/wordpress-miniorange-otp-verification-plugin-5-4-9-privilege-escalation-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42732","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.717","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Validation of Specified Quantity in Input vulnerability in Ads by WPQuads Ads by WPQuads quick-adsense-reloaded allows Input Data Manipulation.This issue affects Ads by WPQuads: from n/a through <= 3.0.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/quick-adsense-reloaded/vulnerability/wordpress-ads-by-wpquads-plugin-3-0-2-broken-authentication-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42733","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.877","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 WPCS currency-switcher allows DOM-Based XSS.This issue affects WPCS: from n/a through <= 1.3.1."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/currency-switcher/vulnerability/wordpress-wpcs-plugin-1-3-1-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42734","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:19.997","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dylan Kuhn  Geo Mashup geo-mashup allows Reflected XSS.This issue affects  Geo Mashup: from n/a through <= 1.13.19."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/geo-mashup/vulnerability/wordpress-geo-mashup-plugin-1-13-19-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42735","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.117","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Password Recovery Exploitation.This issue affects KiviCare: from n/a through <= 4.3.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/kivicare-clinic-management-system/vulnerability/wordpress-kivicare-plugin-4-3-0-broken-authentication-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42736","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.233","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp-better-messages allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BP Better Messages: from n/a through <= 2.14.16."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/bp-better-messages/vulnerability/wordpress-bp-better-messages-plugin-2-14-16-insecure-direct-object-references-idor-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42737","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.350","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking allows Path Traversal.This issue affects VikBooking Hotel Booking Engine & PMS: from n/a through <= 1.8.9."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/vikbooking/vulnerability/wordpress-vikbooking-hotel-booking-engine-pms-plugin-1-8-9-arbitrary-file-deletion-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42738","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.470","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Stored XSS.This issue affects Smart Online Order for Clover: from n/a through <= 1.6.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/clover-online-orders/vulnerability/wordpress-smart-online-order-for-clover-plugin-1-6-0-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42739","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.583","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IniLerm Advanced IP Blocker advanced-ip-blocker allows DOM-Based XSS.This issue affects Advanced IP Blocker: from n/a through <= 8.10.7."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/advanced-ip-blocker/vulnerability/wordpress-advanced-ip-blocker-plugin-8-10-7-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42740","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.700","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in tainacan Tainacan tainacan allows Blind SQL Injection.This issue affects Tainacan: from n/a through <= 1.0.3."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/tainacan/vulnerability/wordpress-tainacan-plugin-1-0-3-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42744","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.827","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Validation of Specified Quantity in Input vulnerability in Ads by WPQuads Ads by WPQuads quick-adsense-reloaded allows Manipulating Hidden Fields.This issue affects Ads by WPQuads: from n/a through <= 3.0.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":2.5}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/quick-adsense-reloaded/vulnerability/wordpress-ads-by-wpquads-plugin-3-0-2-bypass-vulnerability-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42745","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:20.940","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Authentication Bypass.This issue affects Smart Online Order for Clover: from n/a through <= 1.6.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/clover-online-orders/vulnerability/wordpress-smart-online-order-for-clover-plugin-1-6-0-broken-authentication-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42746","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.057","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Retrieve Embedded Sensitive Data.This issue affects Smart Online Order for Clover: from n/a through <= 1.6.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/clover-online-orders/vulnerability/wordpress-smart-online-order-for-clover-plugin-1-6-0-sensitive-data-exposure-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42747","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.173","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Blind SQL Injection.This issue affects Easy Form Builder: from n/a through <= 4.0.6."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/easy-form-builder/vulnerability/wordpress-easy-form-builder-plugin-4-0-6-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42748","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.290","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Unrestricted Upload of File with Dangerous Type vulnerability in WPify WPify Woo Czech wpify-woo allows Upload a Web Shell to a Web Server.This issue affects WPify Woo Czech: from n/a through <= 5.4.1."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-434"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/wpify-woo/vulnerability/wordpress-wpify-woo-czech-plugin-5-4-1-arbitrary-file-upload-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42749","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.413","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeisle Disable Comments for Any Post Types (Remove comments) comments-plus allows Password Recovery Exploitation.This issue affects Disable Comments for Any Post Types (Remove comments): from n/a through <= 1.3.0."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/comments-plus/vulnerability/wordpress-disable-comments-for-any-post-types-remove-comments-plugin-1-3-0-broken-authentication-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42750","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.530","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nexcess WPComplete wpcomplete allows Stored XSS.This issue affects WPComplete: from n/a through <= 2.9.5.4."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.3,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/wpcomplete/vulnerability/wordpress-wpcomplete-plugin-2-9-5-4-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42751","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.643","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevelop Booking Manager booking-manager allows Stored XSS.This issue affects Booking Manager: from n/a through <= 2.1.18."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.3,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/booking-manager/vulnerability/wordpress-booking-manager-plugin-2-1-18-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42753","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.760","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCFM Membership: from n/a through <= 2.11.10."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":3.4}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/wc-multivendor-membership/vulnerability/wordpress-wcfm-membership-plugin-2-11-10-broken-access-control-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42754","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.873","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfavicongenerator allows Reflected XSS.This issue affects Favicon: from n/a through <= 1.3.46."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/favicon-by-realfavicongenerator/vulnerability/wordpress-favicon-plugin-1-3-46-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42755","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:21.990","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 TableOn posts-table-filterable allows Blind SQL Injection.This issue affects TableOn: from n/a through <= 1.0.5.1."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/posts-table-filterable/vulnerability/wordpress-tableon-plugin-1-0-5-1-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42756","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.100","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ludwig You QuickWebP &#8211; Compress / Optimize Images &amp; Convert WebP | SEO Friendly quickwebp allows Path Traversal.This issue affects QuickWebP &#8211; Compress / Optimize Images &amp; Convert WebP | SEO Friendly: from n/a through <= 3.2.7."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/quickwebp/vulnerability/wordpress-quickwebp-compress-optimize-images-convert-webp-seo-friendly-plugin-3-2-7-arbitrary-file-deletion-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42757","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.217","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects WebinarIgnition: from n/a through < 4.08.253."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6.0}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/webinar-ignition/vulnerability/wordpress-webinarignition-plugin-4-08-253-arbitrary-file-deletion-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42758","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.330","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through < 4.08.253."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-266"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/webinar-ignition/vulnerability/wordpress-webinarignition-plugin-4-08-253-privilege-escalation-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42759","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.500","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Super Assistent amazonsimpleadmin allows Stored XSS.This issue affects Affiliate Super Assistent: from n/a through <= 1.10.1."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/amazonsimpleadmin/vulnerability/wordpress-affiliate-super-assistent-plugin-1-10-1-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42760","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.650","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Password Recovery Exploitation.This issue affects Backup and Staging by WP Time Capsule: from n/a through <= 1.22.25."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-288"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/wp-time-capsule/vulnerability/wordpress-backup-and-staging-by-wp-time-capsule-plugin-1-22-25-broken-authentication-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42761","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.763","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows Blind SQL Injection.This issue affects Active Products Tables for WooCommerce: from n/a through <= 1.0.9."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":4.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/profit-products-tables-for-woocommerce/vulnerability/wordpress-active-products-tables-for-woocommerce-plugin-1-0-9-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-42762","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T11:16:22.897","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking allows DOM-Based XSS.This issue affects VikBooking Hotel Booking Engine & PMS: from n/a through <= 1.8.9."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.7}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/vikbooking/vulnerability/wordpress-vikbooking-hotel-booking-engine-pms-plugin-1-8-9-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-45837","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.020","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix use-after-free in arena_vm_close on fork\n\narena_vm_open() only bumps vml->mmap_count but never registers the\nchild VMA in arena->vma_list. The vml->vma always points at the\nparent VMA, so after parent munmap the pointer dangles. If the child\nthen calls bpf_arena_free_pages(), zap_pages() reads the stale\nvml->vma triggering use-after-free.\n\nFix this by preventing the arena VMA from being inherited across\nfork with VM_DONTCOPY, and preventing VMA splits via the may_split\ncallback.\n\nAlso reject mremap with a .mremap callback returning -EINVAL. A\nsame-size mremap(MREMAP_FIXED) on the full arena VMA reaches\ncopy_vma() through the following path:\n\n  check_prep_vma()       - returns 0 early: new_len == old_len\n                           skips VM_DONTEXPAND check\n  prep_move_vma()        - vm_start == old_addr and\n                           vm_end == old_addr + old_len\n                           so may_split is never called\n  move_vma()\n    copy_vma_and_data()\n      copy_vma()\n        vm_area_dup()    - copies vm_private_data (vml pointer)\n        vm_ops->open()   - bumps vml->mmap_count\n      vm_ops->mremap()   - returns -EINVAL, rollback unmaps new VMA\n\nThe refcount ensures the rollback's arena_vm_close does not free\nthe vml shared with the original VMA."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/201128fcc7b213d27ab77bc4e89488b41796480f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4fddde2a732de60bb97e3307d4eb69ac5f1d2b74","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/723b9fa930cc277c15ce6b9ec9feec828cfac9d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d18099f19e53250f8ad2801498b88cec29d9107a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45838","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.130","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix end-of-list detection in cgroup_storage_get_next_key()\n\nlist_next_entry() never returns NULL -- when the current element is the\nlast entry it wraps to the list head via container_of(). The subsequent\nNULL check is therefore dead code and get_next_key() never returns\n-ENOENT for the last element, instead reading storage->key from a bogus\npointer that aliases internal map fields and copying the result to\nuserspace.\n\nReplace it with list_entry_is_head() so the function correctly returns\n-ENOENT when there are no more entries."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/32ce55d424395904986f5066f8755f6cb9993377","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5828b9e5b272ecff7cf5d345128d3de7324117f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/85a2f30e40f7468db732f55659bc6318874f49af","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b4b5a20bed82130da2f2818f04d52378952fbd0b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fc39753b7f92e09177777e9c648afe5aa3abb81f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45839","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.247","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: reject negative CO-RE accessor indices in bpf_core_parse_spec()\n\nCO-RE accessor strings are colon-separated indices that describe a path\nfrom a root BTF type to a target field, e.g. \"0:1:2\" walks through\nnested struct members. bpf_core_parse_spec() parses each component with\nsscanf(\"%d\"), so negative values like -1 are silently accepted.  The\nsubsequent bounds checks (access_idx >= btf_vlen(t)) only guard the\nupper bound and always pass for negative values because C integer\npromotion converts the __u16 btf_vlen result to int, making the\ncomparison (int)(-1) >= (int)(N) false for any positive N.\n\nWhen -1 reaches btf_member_bit_offset() it gets cast to u32 0xffffffff,\nproducing an out-of-bounds read far past the members array.  A crafted\nBPF program with a negative CO-RE accessor on any struct that exists in\nvmlinux BTF (e.g. task_struct) crashes the kernel deterministically\nduring BPF_PROG_LOAD on any system with CONFIG_DEBUG_INFO_BTF=y\n(default on major distributions).  The bug is reachable with CAP_BPF:\n\n BUG: unable to handle page fault for address: ffffed11818b6626\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n Oops: Oops: 0000 [#1] SMP KASAN NOPTI\n CPU: 0 UID: 0 PID: 85 Comm: poc Not tainted 7.0.0-rc6 #18 PREEMPT(full)\n RIP: 0010:bpf_core_parse_spec (tools/lib/bpf/relo_core.c:354)\n RAX: 00000000ffffffff\n Call Trace:\n  <TASK>\n  bpf_core_calc_relo_insn (tools/lib/bpf/relo_core.c:1321)\n  bpf_core_apply (kernel/bpf/btf.c:9507)\n  check_core_relo (kernel/bpf/verifier.c:19475)\n  bpf_check (kernel/bpf/verifier.c:26031)\n  bpf_prog_load (kernel/bpf/syscall.c:3089)\n  __sys_bpf (kernel/bpf/syscall.c:6228)\n  </TASK>\n\nCO-RE accessor indices are inherently non-negative (struct member index,\narray element index, or enumerator index), so reject them immediately\nafter parsing."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1c22483a2c4bbf747787f328392ca3e68619c4dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/36a9012f76ba8d9189ae56a1f8bb7c87c07a1f3a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3ff85ae79e1a74baeb916b78a63d821f6d19a994","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/76f2ebaf79a9ae6d0737b87f045fe769e425d78f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/99dbab7b5a12d8f58d5b0aa2f7a1fe656a70f4b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45840","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.363","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nopenvswitch: cap upcall PID array size and pre-size vport replies\n\nThe vport netlink reply helpers allocate a fixed-size skb with\nnlmsg_new(NLMSG_DEFAULT_SIZE, ...) but serialize the full upcall PID\narray via ovs_vport_get_upcall_portids().  Since\novs_vport_set_upcall_portids() accepts any non-zero multiple of\nsizeof(u32) with no upper bound, a CAP_NET_ADMIN user can install a PID\narray large enough to overflow the reply buffer, causing nla_put() to\nfail with -EMSGSIZE and hitting BUG_ON(err < 0).  On systems with\nunprivileged user namespaces enabled (e.g., Ubuntu default), this is\nreachable via unshare -Urn since OVS vport mutation operations use\nGENL_UNS_ADMIN_PERM.\n\n kernel BUG at net/openvswitch/datapath.c:2414!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 1 UID: 0 PID: 65 Comm: poc Not tainted 7.0.0-rc7-00195-geb216e422044 #1\n RIP: 0010:ovs_vport_cmd_set+0x34c/0x400\n Call Trace:\n  <TASK>\n  genl_family_rcv_msg_doit (net/netlink/genetlink.c:1116)\n  genl_rcv_msg (net/netlink/genetlink.c:1194)\n  netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n  genl_rcv (net/netlink/genetlink.c:1219)\n  netlink_unicast (net/netlink/af_netlink.c:1344)\n  netlink_sendmsg (net/netlink/af_netlink.c:1894)\n  __sys_sendto (net/socket.c:2206)\n  __x64_sys_sendto (net/socket.c:2209)\n  do_syscall_64 (arch/x86/entry/syscall_64.c:63)\n  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n  </TASK>\n Kernel panic - not syncing: Fatal exception\n\nReject attempts to set more PIDs than nr_cpu_ids in\novs_vport_set_upcall_portids(), and pre-compute the worst-case reply\nsize in ovs_vport_cmd_msg_size() based on that bound, similar to the\nexisting ovs_dp_cmd_msg_size().  nr_cpu_ids matches the cap already\nused by the per-CPU dispatch configuration on the datapath side\n(ovs_dp_cmd_fill_info() serialises at most nr_cpu_ids PIDs), so the\ntwo sides stay consistent."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1d6c02b86329883aa467a3a61f8d34369db73a2f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2091c6aa0df6aba47deb5c8ab232b1cb60af3519","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f99ac36b5d7c719d08a69fcdecce40f78a874e15","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f9ef3db77a383d66847fd082c2b437d8ae4d9c63","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fa6e90bc443bed8dc0d55bc5ea5b27ffdfe37704","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45841","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.493","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO\n\nnf_osf_match_one() computes ctx->window % f->wss.val in the\nOSF_WSS_MODULO branch with no guard for f->wss.val == 0. A\nCAP_NET_ADMIN user can add such a fingerprint via nfnetlink; a\nsubsequent matching TCP SYN divides by zero and panics the kernel.\n\nReject the bogus fingerprint in nfnl_osf_add_callback() above the\nper-option for-loop. f->wss is per-fingerprint, not per-option, so\nthe check must run regardless of f->opt_num (including 0). Also\nreject wss.wc >= OSF_WSS_MAX; nf_osf_match_one() already treats that\nas \"should not happen\".\n\nCrash:\n Oops: divide error: 0000 [#1] SMP KASAN NOPTI\n RIP: 0010:nf_osf_match_one (net/netfilter/nfnetlink_osf.c:98)\n Call Trace:\n <IRQ>\n  nf_osf_match (net/netfilter/nfnetlink_osf.c:220)\n  xt_osf_match_packet (net/netfilter/xt_osf.c:32)\n  ipt_do_table (net/ipv4/netfilter/ip_tables.c:348)\n  nf_hook_slow (net/netfilter/core.c:622)\n  ip_local_deliver (net/ipv4/ip_input.c:265)\n  ip_rcv (include/linux/skbuff.h:1162)\n  __netif_receive_skb_one_core (net/core/dev.c:6181)\n  process_backlog (net/core/dev.c:6642)\n  __napi_poll (net/core/dev.c:7710)\n  net_rx_action (net/core/dev.c:7945)\n  handle_softirqs (kernel/softirq.c:622)"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2195574dc6d9017d32ac346987e12659f931d932","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8def8fbd23f40e945febe913d04b731012ce0082","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a05e195618a6d474f2bcd5b6376d0ffc2f00366","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c55940895245d8ef658ab381248a28755218d625","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fb965b1cfe92b28d28b5ebe3116b81dbef9f2d2f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45842","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.600","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nslip: reject VJ receive packets on instances with no rstate array\n\nslhc_init() accepts rslots == 0 as a valid configuration, with the\ndocumented meaning of 'no receive compression'. In that case the\nallocation loop in slhc_init() is skipped, so comp->rstate stays\nNULL and comp->rslot_limit stays 0 (from the kzalloc of struct\nslcompress).\n\nThe receive helpers do not defend against that configuration.\nslhc_uncompress() dereferences comp->rstate[x] when the VJ header\ncarries an explicit connection ID, and slhc_remember() later assigns\ncs = &comp->rstate[...] after only comparing the packet's slot number\nto comp->rslot_limit. Because rslot_limit is 0, slot 0 passes the\nrange check, and the code dereferences a NULL rstate.\n\nThe configuration is reachable in-tree through PPP. PPPIOCSMAXCID\nstores its argument in a signed int, and (val >> 16) uses arithmetic\nshift. Passing 0xffff0000 therefore sign-extends to -1, so val2 + 1\nis 0 and ppp_generic.c ends up calling slhc_init(0, 1). Because\n/dev/ppp open is gated by ns_capable(CAP_NET_ADMIN), the whole path\nis reachable from an unprivileged user namespace. Once the malformed\nVJ state is installed, any inbound VJ-compressed or VJ-uncompressed\nframe that selects slot 0 crashes the kernel in softirq context:\n\n Oops: general protection fault, probably for non-canonical\n       address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:slhc_uncompress (drivers/net/slip/slhc.c:519)\n Call Trace:\n  <TASK>\n  ppp_receive_nonmp_frame (drivers/net/ppp/ppp_generic.c:2466)\n  ppp_input (drivers/net/ppp/ppp_generic.c:2359)\n  ppp_async_process (drivers/net/ppp/ppp_async.c:492)\n  tasklet_action_common (kernel/softirq.c:926)\n  handle_softirqs (kernel/softirq.c:623)\n  run_ksoftirqd (kernel/softirq.c:1055)\n  smpboot_thread_fn (kernel/smpboot.c:160)\n  kthread (kernel/kthread.c:436)\n  ret_from_fork (arch/x86/kernel/process.c:164)\n  </TASK>\n\nReject the receive side on such instances instead of touching rstate.\nslhc_uncompress() falls through to its existing 'bad' label, which\nbumps sls_i_error and enters the toss state. slhc_remember() mirrors\nthat with an explicit sls_i_error increment followed by slhc_toss();\nthe sls_i_runt counter is not used here because a missing rstate is\nan internal configuration state, not a runt packet.\n\nThe transmit path is unaffected: the only in-tree caller that picks\nrslots from userspace (ppp_generic.c) still supplies tslots >= 1, and\nslip.c always calls slhc_init(16, 16), so comp->tstate remains valid\nand slhc_compress() continues to work."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/7b0d9e878ec2b21d99ae8051b3dda59cdb66c152","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9e1ff0eead073c4f46d874ad2526b7dda5465faf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c6980e8b1a86288167f34966fa5219031999b6f1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/de42f86e2cf5028a97e74c25869d1a962b13c301","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e76607442d5b73e1ba6768f501ef815bb58c2c0e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45843","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.743","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nslip: bound decode() reads against the compressed packet length\n\nslhc_uncompress() parses a VJ-compressed TCP header by advancing a\npointer through the packet via decode() and pull16(). Neither helper\nbounds-checks against isize, and decode() masks its return with\n& 0xffff so it can never return the -1 that callers test for -- those\nerror paths are dead code.\n\nA short compressed frame whose change byte requests optional fields\nlets decode() read past the end of the packet. The over-read bytes\nare folded into the cached cstate and reflected into subsequent\nreconstructed packets.\n\nMake decode() and pull16() take the packet end pointer and return -1\nwhen exhausted. Add a bounds check before the TCP-checksum read.\nThe existing == -1 tests now do what they were always meant to."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0511ecb00e61bf28e2fec4bb41fcce385c3a3b2d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/37537e42e6df387398bee85cb85070cc80bb1e10","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c1367a2d7aad643a6f87c6931b13cc1a25e8ca7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4cefe32639933d652614b0bd50f818f9af4af78f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d42bec6e4f6d6d658be365539400b3314b76b2a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45844","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.847","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: arp_tables: fix IEEE1394 ARP payload parsing\n\nWeiming Shi says:\n\n\"arp_packet_match() unconditionally parses the ARP payload assuming two\nhardware addresses are present (source and target). However,\nIPv4-over-IEEE1394 ARP (RFC 2734) omits the target hardware address\nfield, and arp_hdr_len() already accounts for this by returning a\nshorter length for ARPHRD_IEEE1394 devices.\n\nAs a result, on IEEE1394 interfaces arp_packet_match() advances past a\nnonexistent target hardware address and reads the wrong bytes for both\nthe target device address comparison and the target IP address. This\ncauses arptables rules to match against garbage data, leading to\nincorrect filtering decisions: packets that should be accepted may be\ndropped and vice versa.\n\nThe ARP stack in net/ipv4/arp.c (arp_create and arp_process) already\nhandles this correctly by skipping the target hardware address for\nARPHRD_IEEE1394. Apply the same pattern to arp_packet_match().\"\n\nMangle the original patch to always return 0 (no match) in case user\nmatches on the target hardware address which is never present in\nIEEE1394.\n\nNote that this returns 0 (no match) for either normal and inverse match\nbecause matching in the target hardware address in ARPHRD_IEEE1394 has\nnever been supported by arptables. This is intentional, matching on the\ntarget hardware address should never evaluate true for ARPHRD_IEEE1394.\n\nMoreover, adjust arpt_mangle to drop the packet too as AI suggests:\n\nIn arpt_mangle, the logic assumes a standard ARP layout. Because\nIEEE1394 (FireWire) omits the target hardware address, the linear\npointer arithmetic miscalculates the offset for the target IP address.\nThis causes mangling operations to write to the wrong location, leading\nto packet corruption. To ensure safety, this patch drops packets\n(NF_DROP) when mangling is requested for these fields on IEEE1394\ndevices, as the current implementation cannot correctly map the FireWire\nARP payload.\n\nThis omits both mangling target hardware and IP address. Even if IP\naddress mangling should be possible in IEEE1394, this would require\nto adjust arpt_mangle offset calculation, which has never been\nsupported.\n\nBased on patch from Weiming Shi <bestswngs@gmail.com>."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/03ea11dbefaa55c502735ee551c89ef773fe753b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1c55053f8ffdc060006df898fd3664e3d1bfac7b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1e8e3f449b1e73b73a843257635b9c50f0cc0f0a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ac698d81fd6619c7504cee913f1cab5285fba1b7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ad9973df8e0eeb123d9ec4d18828e05b7d44ff4b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45845","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:23.960","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: fix NULL pointer dereference in class dump\n\nWhen a TAPRIO child qdisc is deleted via RTM_DELQDISC, taprio_graft()\nis called with new == NULL and stores NULL into q->qdiscs[cl - 1].\nSubsequent RTM_GETTCLASS dump operations walk all classes via\ntaprio_walk() and call taprio_dump_class(), which calls taprio_leaf()\nreturning the NULL pointer, then dereferences it to read child->handle,\ncausing a kernel NULL pointer dereference.\n\nThe bug is reachable with namespace-scoped CAP_NET_ADMIN on any kernel\nwith CONFIG_NET_SCH_TAPRIO enabled. On systems with unprivileged user\nnamespaces enabled, an unprivileged local user can trigger a kernel\npanic by creating a taprio qdisc inside a new network namespace,\ngrafting an explicit child qdisc, deleting it, and requesting a class\ndump. The RTM_GETTCLASS dump itself requires no capability.\n\n Oops: general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#1] SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f]\n RIP: 0010:taprio_dump_class (net/sched/sch_taprio.c:2478)\n Call Trace:\n  <TASK>\n  tc_fill_tclass (net/sched/sch_api.c:1966)\n  qdisc_class_dump (net/sched/sch_api.c:2326)\n  taprio_walk (net/sched/sch_taprio.c:2514)\n  tc_dump_tclass_qdisc (net/sched/sch_api.c:2352)\n  tc_dump_tclass_root (net/sched/sch_api.c:2370)\n  tc_dump_tclass (net/sched/sch_api.c:2431)\n  rtnl_dumpit (net/core/rtnetlink.c:6864)\n  netlink_dump (net/netlink/af_netlink.c:2325)\n  rtnetlink_rcv_msg (net/core/rtnetlink.c:6959)\n  netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n  </TASK>\n\nFix this by substituting &noop_qdisc when new is NULL in\ntaprio_graft(), a common pattern used by other qdiscs (e.g.,\nmultiq_graft()) to ensure the q->qdiscs[] slots are never NULL.\nThis makes control-plane dump paths safe without requiring individual\nNULL checks.\n\nSince the data-plane paths (taprio_enqueue and taprio_dequeue_from_txq)\npreviously had explicit NULL guards that would drop/skip the packet\ncleanly, update those checks to test for &noop_qdisc instead. Without\nthis, packets would reach taprio_enqueue_one() which increments the root\nqdisc's qlen and backlog before calling the child's enqueue; noop_qdisc\ndrops the packet but those counters are never rolled back, permanently\ninflating the root qdisc's statistics.\n\nAfter this change *old can be a valid qdisc, NULL, or &noop_qdisc.\nOnly call qdisc_put(*old) in the first case to avoid decreasing\nnoop_qdisc's refcount, which was never increased."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3d07ca5c0fae311226f737963984bd94bb159a87","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/48b26d48e76221dc90b02bf5428bab53643461ca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8f1ff8866cb9f655e5faea6994eb902960be8e04","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d02e2fbf60de46678e2ea698a6a904fd21e1cc31","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec2501e361b08b50bcb1e7b3253fc861abbda28d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45846","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T11:16:24.083","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst()\n\nbareudp_fill_metadata_dst() passes bareudp->sock to\nudp_tunnel6_dst_lookup() in the IPv6 path without a NULL check.\nThe socket is only created in bareudp_open() and NULLed in\nbareudp_stop(), so calling this function while the device is down\ntriggers a NULL dereference via sock->sk.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n RIP: 0010:udp_tunnel6_dst_lookup (net/ipv6/ip6_udp_tunnel.c:160)\n Call Trace:\n  <TASK>\n  bareudp_fill_metadata_dst (drivers/net/bareudp.c:532)\n  do_execute_actions (net/openvswitch/actions.c:901)\n  ovs_execute_actions (net/openvswitch/actions.c:1589)\n  ovs_packet_cmd_execute (net/openvswitch/datapath.c:700)\n  genl_family_rcv_msg_doit (net/netlink/genetlink.c:1114)\n  genl_rcv_msg (net/netlink/genetlink.c:1209)\n  netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n  </TASK>\n\nAdd a NULL check returning -ESHUTDOWN, consistent with the xmit paths\nin the same driver."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/35a115a204be08f97450b0389413e218268ef4a2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/638905520fc4fae6a80991563f264131545ba3df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/74a02921c48fcd35a7881956c9e5c52b86595f5d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0f4e4e8e0f5e24ddd83e3d1221732621cf34636","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/aa6c6d9ee064aabfede4402fd1283424e649ca19","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-9689","sourceIdentifier":"secalert@redhat.com","published":"2026-05-27T12:17:15.513","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Keycloak, an open-source identity and access management solution. When a client application is configured to accept broad redirect Uniform Resource Identifiers (URIs), a remote attacker can manipulate the authentication process by crafting a special web address. If a user clicks this link, the client application might incorrectly prioritize attacker-controlled information over legitimate data. This vulnerability, known as HTTP parameter pollution, could allow an attacker to bypass security measures or gain unauthorized access to resources."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N","baseScore":4.2,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":2.5}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-1288"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-9689","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2481845","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2024-28765","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:40.600","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.  This information could be used in further attacks against the system."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-209"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7268903","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2024-40684","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:40.757","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log Analysis does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-521"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7268536","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2024-56462","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:41.417","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating system."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-530"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273957","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2025-3633","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:42.233","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting (XSS). This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended functionality and could lead to the disclosure of credentials within a trusted session."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272628","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2025-71303","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:42.733","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Fix race condition when checking rpm_on\n\nWhen autosuspend is triggered, driver rpm_on flag is set to indicate that\na suspend/resume is already in progress. However, when a userspace\napplication submits a command during this narrow window,\namdxdna_pm_resume_get() may incorrectly skip the resume operation because\nthe rpm_on flag is still set. This results in commands being submitted\nwhile the device has not actually resumed, causing unexpected behavior.\n\nThe set_dpm() is called by suspend/resume, it relied on rpm_on flag to\navoid calling into rpm suspend/resume recursivly. So to fix this, remove\nthe use of the rpm_on flag entirely. Instead, introduce aie2_pm_set_dpm()\nwhich explicitly resumes the device before invoking set_dpm(). With this\nchange, set_dpm() is called directly inside the suspend or resume execution\npath. Otherwise, aie2_pm_set_dpm() is called."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/00ffe45ece80160aef446d74ded906352f21dd72","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e7cb75b6a5127d78298e39750b4f3185eca0dafc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71304","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:42.850","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: /smack/doi: accept previously used values\n\nWriting to /smack/doi a value that has ever been\nwritten there in the past disables networking for\nnon-ambient labels.\nE.g.\n\n    # cat /smack/doi\n    3\n    # netlabelctl -p cipso list\n    Configured CIPSO mappings (1)\n     DOI value : 3\n       mapping type : PASS_THROUGH\n    # netlabelctl -p map list\n    Configured NetLabel domain mappings (3)\n     domain: \"_\" (IPv4)\n       protocol: UNLABELED\n     domain: DEFAULT (IPv4)\n       protocol: CIPSO, DOI = 3\n     domain: DEFAULT (IPv6)\n       protocol: UNLABELED\n\n    # cat /smack/ambient\n    _\n    # cat /proc/$$/attr/smack/current\n    _\n    # ping -c1 10.1.95.12\n    64 bytes from 10.1.95.12: icmp_seq=1 ttl=64 time=0.964 ms\n    # echo foo >/proc/$$/attr/smack/current\n    # ping -c1 10.1.95.12\n    64 bytes from 10.1.95.12: icmp_seq=1 ttl=64 time=0.956 ms\n    unknown option 86\n\n    # echo 4 >/smack/doi\n    # echo 3 >/smack/doi\n!>  [  214.050395] smk_cipso_doi:691 cipso add rc = -17\n    # echo 3 >/smack/doi\n!>  [  249.402261] smk_cipso_doi:678 remove rc = -2\n!>  [  249.402261] smk_cipso_doi:691 cipso add rc = -17\n\n    # ping -c1 10.1.95.12\n!!> ping: 10.1.95.12: Address family for hostname not supported\n\n    # echo _ >/proc/$$/attr/smack/current\n    # ping -c1 10.1.95.12\n    64 bytes from 10.1.95.12: icmp_seq=1 ttl=64 time=0.617 ms\n\nThis happens because Smack keeps decommissioned DOIs,\nfails to re-add them, and consequently refuses to add\nthe “default” domain map:\n\n    # netlabelctl -p cipso list\n    Configured CIPSO mappings (2)\n     DOI value : 3\n       mapping type : PASS_THROUGH\n     DOI value : 4\n       mapping type : PASS_THROUGH\n    # netlabelctl -p map list\n    Configured NetLabel domain mappings (2)\n     domain: \"_\" (IPv4)\n       protocol: UNLABELED\n!>  (no ipv4 map for default domain here)\n     domain: DEFAULT (IPv6)\n       protocol: UNLABELED\n\nFix by clearing decommissioned DOI definitions and\nserializing concurrent DOI updates with a new lock.\n\nAlso:\n- allow /smack/doi to live unconfigured, since\n  adding a map (netlbl_cfg_cipsov4_map_add) may fail.\n  CIPSO_V4_DOI_UNKNOWN(0) indicates the unconfigured DOI\n- add new DOI before removing the old default map,\n  so the old map remains if the add fails\n\n(2008-02-04, Casey Schaufler)"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/199452f22d2f74b897fe826f81ec402b0a8461a0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1c7ee23dfcd18d80770d8f90f2ab5bb1b2bfd8a3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/33d589ed60ae433b483761987b85e0d24e54584e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5a247a84de0ba44edbbd6be851c8a6b2aa60ff85","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6ec091c5c7eeabd249a7c46813cad1e9f555f859","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8beebb8ad9a003f978e53b06237986588223e15e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eb718a3c8181ada679340db34cd61bce48e44749","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f8071500177f38cff38892bd85ac631cc6e010b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71305","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.000","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/display/dp_mst: Add protection against 0 vcpi\n\nWhen releasing a timeslot there is a slight chance we may end up\nwith the wrong payload mask due to overflow if the delayed_destroy_work\nends up coming into play after a DP 2.1 monitor gets disconnected\nwhich causes vcpi to become 0 then we try to make the payload =\n~BIT(vcpi - 1) which is a negative shift. VCPI id should never\nreally be 0 hence skip changing the payload mask if VCPI is 0.\n\nOtherwise it leads to\n<7> [515.287237] xe 0000:03:00.0: [drm:drm_dp_mst_get_port_malloc\n[drm_display_helper]] port ffff888126ce9000 (3)\n<4> [515.287267] -----------[ cut here ]-----------\n<3> [515.287268] UBSAN: shift-out-of-bounds in\n../drivers/gpu/drm/display/drm_dp_mst_topology.c:4575:36\n<3> [515.287271] shift exponent -1 is negative\n<4> [515.287275] CPU: 7 UID: 0 PID: 3108 Comm: kworker/u64:33 Tainted: G\nS U 6.17.0-rc6-lgci-xe-xe-3795-3e79699fa1b216e92+ #1 PREEMPT(voluntary)\n<4> [515.287279] Tainted: [S]=CPU_OUT_OF_SPEC, [U]=USER\n<4> [515.287279] Hardware name: ASUS System Product Name/PRIME Z790-P\nWIFI, BIOS 1645 03/15/2024\n<4> [515.287281] Workqueue: drm_dp_mst_wq drm_dp_delayed_destroy_work\n[drm_display_helper]\n<4> [515.287303] Call Trace:\n<4> [515.287304] <TASK>\n<4> [515.287306] dump_stack_lvl+0xc1/0xf0\n<4> [515.287313] dump_stack+0x10/0x20\n<4> [515.287316] __ubsan_handle_shift_out_of_bounds+0x133/0x2e0\n<4> [515.287324] ? drm_atomic_get_private_obj_state+0x186/0x1d0\n<4> [515.287333] drm_dp_atomic_release_time_slots.cold+0x17/0x3d\n[drm_display_helper]\n<4> [515.287355] mst_connector_atomic_check+0x159/0x180 [xe]\n<4> [515.287546] drm_atomic_helper_check_modeset+0x4d9/0xfa0\n<4> [515.287550] ? __ww_mutex_lock.constprop.0+0x6f/0x1a60\n<4> [515.287562] intel_atomic_check+0x119/0x2b80 [xe]\n<4> [515.287740] ? find_held_lock+0x31/0x90\n<4> [515.287747] ? lock_release+0xce/0x2a0\n<4> [515.287754] drm_atomic_check_only+0x6a2/0xb40\n<4> [515.287758] ? drm_atomic_add_affected_connectors+0x12b/0x140\n<4> [515.287765] drm_atomic_commit+0x6e/0xf0\n<4> [515.287766] ? _pfx__drm_printfn_info+0x10/0x10\n<4> [515.287774] drm_client_modeset_commit_atomic+0x25c/0x2b0\n<4> [515.287794] drm_client_modeset_commit_locked+0x60/0x1b0\n<4> [515.287795] ? mutex_lock_nested+0x1b/0x30\n<4> [515.287801] drm_client_modeset_commit+0x26/0x50\n<4> [515.287804] __drm_fb_helper_restore_fbdev_mode_unlocked+0xdc/0x110\n<4> [515.287810] drm_fb_helper_hotplug_event+0x120/0x140\n<4> [515.287814] drm_fbdev_client_hotplug+0x28/0xd0\n<4> [515.287819] drm_client_hotplug+0x6c/0xf0\n<4> [515.287824] drm_client_dev_hotplug+0x9e/0xd0\n<4> [515.287829] drm_kms_helper_hotplug_event+0x1a/0x30\n<4> [515.287834] drm_dp_delayed_destroy_work+0x3df/0x410\n[drm_display_helper]\n<4> [515.287861] process_one_work+0x22b/0x6f0\n<4> [515.287874] worker_thread+0x1e8/0x3d0\n<4> [515.287879] ? __pfx_worker_thread+0x10/0x10\n<4> [515.287882] kthread+0x11c/0x250\n<4> [515.287886] ? __pfx_kthread+0x10/0x10\n<4> [515.287890] ret_from_fork+0x2d7/0x310\n<4> [515.287894] ? __pfx_kthread+0x10/0x10\n<4> [515.287897] ret_from_fork_asm+0x1a/0x30"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/342ccffd9f77fc29fe1c05fd145e4d842bd2feaa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3f44cdb5371faf225af37d5caba8f21ec0572469","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4d2ccdea18b564e3f73e3e543854acea64e6277d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/95dbd525efce2a9e9e1c50ad15213de644c85ad0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ac9a7c329a5610051fc476644c9b9145a5965ecb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d6afc7539ce06dadfa5b4787b3cfe79b95d8f67a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71306","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.167","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nima: Fix stack-out-of-bounds in is_bprm_creds_for_exec()\n\nKASAN reported a stack-out-of-bounds access in ima_appraise_measurement\nfrom is_bprm_creds_for_exec:\n\nBUG: KASAN: stack-out-of-bounds in ima_appraise_measurement+0x12dc/0x16a0\n Read of size 1 at addr ffffc9000160f940 by task sudo/550\nThe buggy address belongs to stack of task sudo/550\nand is located at offset 24 in frame:\n  ima_appraise_measurement+0x0/0x16a0\nThis frame has 2 objects:\n  [48, 56) 'file'\n  [80, 148) 'hash'\n\nThis is caused by using container_of on the *file pointer. This offset\ncalculation is what triggers the stack-out-of-bounds error.\n\nIn order to fix this, pass in a bprm_is_check boolean which can be set\ndepending on how process_measurement is called. If the caller has a\nlinux_binprm pointer and the function is BPRM_CHECK we can determine\nis_check and set it then. Otherwise set it to false."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/377cae9851e8559e9d8b82a78c1ac0abeb18839c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ab3d16da982a4ebb715d487dbf9dd66e3990d935","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71307","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.283","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix NULL pointer dereference on panthor_fw_unplug\n\nThis patch removes the MCU halt and wait for halt procedures during\npanthor_fw_unplug() as the MCU can be in a variety of states or the FW\nmay not even be loaded/initialized at all, the latter of which can lead\nto a NULL pointer dereference.\n\nIt should be safe on unplug to just disable the MCU without waiting for\nit to halt as it may not be able to."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/920c6af98e98e6afedf6318a75bac95af8415c6c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/aab8b8a42e206a399fe3a5ed4b4cbb45ff6c546c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71308","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.403","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Fix potential NULL pointer dereference in context cleanup\n\naie_destroy_context() is invoked during error handling in\naie2_create_context(). However, aie_destroy_context() assumes that the\ncontext's mailbox channel pointer is non-NULL. If mailbox channel\ncreation fails, the pointer remains NULL and calling aie_destroy_context()\ncan lead to a NULL pointer dereference.\n\nIn aie2_create_context(), replace aie_destroy_context() with a function\nwhich request firmware to remove the context created previously."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2611c9616cb52d3ed54a6095d72d18e645a6955a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/97f27573837ef96b4ba42af463cc800cab615c0e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71309","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.517","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: fix deadlock in ni_read_folio_cmpr\n\nSyzbot reported a task hung in ni_readpage_cmpr (now ni_read_folio_cmpr).\nThis is caused by a lock inversion deadlock involving the inode mutex\n(ni_lock) and page locks.\n\nScenario:\n1. Task A enters ntfs_read_folio() for page X. It acquires ni_lock.\n2. Task A calls ni_read_folio_cmpr(), which attempts to lock all pages in\n   the compressed frame (including page Y).\n3. Concurrently, Task B (e.g., via readahead) has locked page Y and\n   calls ntfs_read_folio().\n4. Task B waits for ni_lock (held by A).\n5. Task A waits for page Y lock (held by B).\n   -> DEADLOCK.\n\nThe fix is to restructure locking: do not take ni_lock in ntfs_read_folio().\nInstead, acquire ni_lock inside ni_read_folio_cmpr() ONLY AFTER all required\npage locks for the frame have been successfully acquired. This restores the\ncorrect lock ordering (Page Lock -> ni_lock) consistent with VFS.\n\n[almaz.alexandrovich@paragon-software.com: ni_readpage_cmpr was renamed to ni_read_folio_cmpr]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/cfe246b318106e1691bd6c9466c739e8559d25c2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e37a75bb866c29da954b51d0dd7670406246d9ee","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71311","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.627","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize new folios before use\n\nKMSAN reports an uninitialized value in longest_match_std(), invoked\nfrom ntfs_compress_write(). When new folios are allocated without being\nmarked uptodate and ni_read_frame() is skipped because the caller expects\nthe frame to be completely overwritten, some reserved folios may remain\nonly partially filled, leaving the rest memory uninitialized."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/41d79f8e2a36622d148719bf7c18b46ac1264284","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5a30cc03bde169ad558695b26da6ea7e55f6194a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dd6c81527d097b3b0bf5a15c2fdc9657d045144c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f223ebffa185cc8da934333c5a31ff2d4f992dc9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2025-71312","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:43.763","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: fix ntfs_mount_options leak in ntfs_fill_super()\n\nIn ntfs_fill_super(), the fc->fs_private pointer is set to NULL without\nfirst freeing the memory it points to. This causes the subsequent call to\nntfs_fs_free() to skip freeing the ntfs_mount_options structure.\n\nThis results in a kmemleak report:\n\n  unreferenced object 0xff1100015378b800 (size 32):\n    comm \"mount\", pid 582, jiffies 4294890685\n    hex dump (first 32 bytes):\n      00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n      00 00 00 00 00 00 00 00 ed ff ed ff 00 04 00 00  ................\n    backtrace (crc ed541d8c):\n      __kmalloc_cache_noprof+0x424/0x5a0\n      __ntfs_init_fs_context+0x47/0x590\n      alloc_fs_context+0x5d8/0x960\n      __x64_sys_fsopen+0xb1/0x190\n      do_syscall_64+0x50/0x1f0\n      entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThis issue can be reproduced using the following commands:\n        fallocate -l 100M test.file\n        mount test.file /tmp/test\n\nSince sbi->options is duplicated from fc->fs_private and does not\ndirectly use the memory allocated for fs_private, it is unnecessary to\nset fc->fs_private to NULL.\n\nAdditionally, this patch simplifies the code by utilizing the helper\nfunction put_mount_options() instead of open-coding the cleanup logic."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/dac871d833b09495198dcac81d2ebaa8db11acbc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f7edab0cee03a1cbe0e55a7bcab8d2d8b6b74278","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-1718","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:43.883","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a specially crafted query when autonomous transactions are enabled."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273555","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-1933","sourceIdentifier":"secalert@redhat.com","published":"2026-05-27T14:16:44.023","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point metadata through SMB operations even on read-only exports. This could allow modification of SMB-visible file behavior, including converting files into symbolic links or other reparse point types."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-1933","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447317","source":"secalert@redhat.com"},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=15992","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-2340","sourceIdentifier":"secalert@redhat.com","published":"2026-05-27T14:16:44.387","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share could overwrite a protected file by renaming a newly created file over the existing WORM-protected file."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-280"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-2340","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447318","source":"secalert@redhat.com"},{"url":"https://bugzilla.samba.org/show_bug.cgi?id=15997","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-2607","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:44.517","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM MQ Operator SC2: v3.2.0 through 3.2.23CD:  v3.3.0, v3.4.0, v3.4.1, v3.5.0, v3.5.1 - v3.5.3, v3.6.0 - v3.6.4, v3.7.0 - v3.7.2, v3.8.0, v3.8.1, v3.9.0, v3.9.1LTS: v2.0.0 - 2.0.29 and IBM supplied MQ Advanced container images SC2: 9.4.0.6 through r1, 9.4.0.6-r2, 9.4.0.7-r1, 9.4.0.10-r1, 9.4.0.10-r2, 9.4.0.11-r1, 9.4.0.11-r2, 9.4.0.11-r3, 9.4.0.12-r1, 9.4.0.15-r1 - 9.4.0.15-r4, 9.4.0.16-r1, 9.4.0.16-r2, 9.4.0.17-r1, 9.4.0.17-r2, 9.4.0.20-r1CD: 9.4.1.0-r1, 9.4.1.0-r2, 9.4.1.1-r1, 9.4.2.0-r1, 9.4.2.0-r2, 9.4.2.1-r1, 9.4.2.1-r2, 9.4.3.0-r1, 9.4.3.0-r2, 9.4.3.1-r1 - 9.4.3.1-r3, 9.4.4.0-r1 - 9.4.4.0-r4, 9.4.4.1-r1, 9.4.5.0-r1, 9.4.5.0-r2LTS: 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.0.10-r1, 9.3.0.10-r2, 9.3.0.11-r1,9.3.0.11-r2, 9.3.0.15-r1, 9.3.0.16-r1, 9.3.0.16-r2, 9.3.0.17-r1, 9.3.0.17-r2, 9.3.0.17-r3, 9.3.0.20-r1, 9.3.0.20-r2, 9.3.0.21-r1, 9.3.0.21-r2, 9.3.0.21-r3, 9.3.0.25-r1, 9.4.0.0-r1, 9.4.0.0-r2, 9.4.0.0-r3, 9.4.0.5-r1, 9.4.0.5-r2 IBM MQ stores potentially sensitive information in log files that could be read by a local user."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.4,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273145","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-36044","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T14:16:45.143","lastModified":"2026-05-27T14:16:45.143","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"@pensar/apex <= 0.0.58 is vulnerable to OS command injection via the smart_enumerate tool. The createSmartEnumerateTool() function in src/core/agent/tools.ts constructs a shell command by concatenating unsanitized values from the extensions array and url parameter into a string passed to Node.js child_process.exec(). Because exec() spawns a shell, shell metacharacters in those values are interpreted by the host shell, resulting in arbitrary OS command execution with the privileges of the running process."}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"references":[{"url":"https://gist.github.com/NucleiAv/47e87da08b90ef464fd9b35affe578fb","source":"cve@mitre.org"},{"url":"https://www.npmjs.com/package/@pensar/apex","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-36045","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T14:16:45.287","lastModified":"2026-05-27T14:16:45.287","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"picoclaw <=v0.1.2 and earlier is vulnerable to OS command injection via the ExecTool component (pkg/tools/shell.go). The guardCommand() function attempts to restrict shell command execution using a denylist of 8 regular expressions, but the denylist is incomplete."}],"metrics":{},"references":[{"url":"https://gist.github.com/NucleiAv/41899be6266a9813840301577792ed68","source":"cve@mitre.org"},{"url":"https://github.com/sipeed/picoclaw/releases/tag/v0.1.2","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-3366","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:46.737","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM InfoSphere Optim Test Data Fabrication 1.0.0, 1.0.0.1, 1.0.0.2, 1.0.2, 1.0.2.2, 1.0.2.3, 1.0.2.4, 1.0.2.5, 1.0.2.6, 1.0.2.7 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing \"dot dot\" sequences (/../) to view arbitrary files on the system"}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272653","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-3623","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:47.000","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Netezza Performance Server Replication Services 3.0.2.0 through 3.0.5.0 allows an attacker with low‑privileged access to escalate their privileges to root. By exploiting this flaw, the attacker can execute root‑level commands, obtain a root shell, and change the root user’s password. Successful exploitation also enables modification or removal of system‑wide files and the installation of persistent backdoors. This results in full system compromise with complete loss of confidentiality, integrity, and availability."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-250"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272148","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-3676","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:16:47.123","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cloud APM, Base Private 8.1.4 and IBM Cloud APM, Advanced Private 8.1.4 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in the data query logic of the Fenced environment."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273649","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-45847","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:56.577","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: remove WARN_ON_ONCE when accessing forward path array\n\nAlthough unlikely, recent support for IPIP tunnels increases chances of\nreaching this WARN_ON_ONCE if userspace manages to build a sufficiently\nlong forward path.\n\nRemove it."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/008e7a7c293b30bc43e4368dac6ea3808b75a572","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/50422613185d505201167e8bdd2f2700790d5db6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/548244c2f542aa0ad49453e9306e715a3877bc44","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9464ca7a6e56ad1ebf48b2ad5c16871edfad10c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/959ea349c7e2d4edf07b6838ca7e59345fe61a08","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a78d055ba7c31103ad02f8eceb0c452e154d2660","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dcf9b3c90e5560339649d088836529883fb509f3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45848","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:56.700","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix NULL sock in aa_sock_file_perm\n\nDeal with the potential that sock and sock-sk can be NULL during\nsocket setup or teardown. This could lead to an oops. The fix for NULL\npointer dereference in __unix_needs_revalidation shows this is at\nleast possible for af_unix sockets. While the fix for af_unix sockets\napplies for newer mediation this is still the fall back path for older\naf_unix mediation and other sockets, so ensure it is covered."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/00b67657535dfea56e84d11492f5c0f61d0af297","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0dc19bca22606f7a61d5988408f74e3ae0ef3486","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3852eb9a0392eb435c03dcb47d581bcfe6a9a95b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5121b7283f1c46e4c06b88b1dda7b064429d77de","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/68538ec34fcb4194c7961dc4eca6f5537fec8067","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8a0ededbfcff74598f82f1d4b8ef9db28878b317","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c11b7c3280d000376e27ebfed17ec7046699eab4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ccb66a3c6c8f51b3ed1bc003b70bb9ff99e8d835","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45849","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:56.850","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: add missing lock protection in ocelot_port_xmit_inj()\n\nocelot_port_xmit_inj() calls ocelot_can_inject() and\nocelot_port_inject_frame() without holding the injection group lock.\nBoth functions contain lockdep_assert_held() for the injection lock,\nand the correct caller felix_port_deferred_xmit() properly acquires\nthe lock using ocelot_lock_inj_grp() before calling these functions.\n\nAdd ocelot_lock_inj_grp()/ocelot_unlock_inj_grp() around the register\ninjection path to fix the missing lock protection. The FDMA path is not\naffected as it uses its own locking mechanism."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/026f6513c5880c2c89e38ad66bbec2868f978605","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0b217a40156f497e09dd20d3f7baec40c785f386","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/51c32ae7fae14552d79f7139614b77c1bbd57a48","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/63da961381e0d979459dede713001f8452364477","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7ac58d8832802ec89baa7539e13e6d58a88cce04","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cc1b179f778f98270bdbbb48d183b4b6427ae198","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45850","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:56.970","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: skip ipv6 extension headers for csum checks\n\nProtocol checksum validation fails for IPv6 if there are extension\nheaders before the protocol header. iph->len already contains its\noffset, so use it to fix the problem."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/05cfe9863ef049d98141dc2969eefde72fb07625","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a3ca27762ce8476b4fbf9b2a8f5cb74c38e483e4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45851","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.077","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nefi: Fix reservation of unaccepted memory table\n\nThe reserve_unaccepted() function incorrectly calculates the size of the\nmemblock reservation for the unaccepted memory table. It aligns the\nsize of the table, but fails to account for cases where the table's\nstarting physical address (efi.unaccepted) is not page-aligned.\n\nIf the table starts at an offset within a page and its end crosses into\na subsequent page that the aligned size does not cover, the end of the\ntable will not be reserved. This can lead to the table being overwritten\nor inaccessible, causing a kernel panic in accept_memory().\n\nThis issue was observed when starting Intel TDX VMs with specific memory\nsizes (e.g., > 64GB).\n\nFix this by calculating the end address first (including the unaligned\nstart) and then aligning it up, ensuring the entire range is covered\nby the reservation."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0862438c90487e79822d5647f854977d50381505","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9b18bf59977f5c5bc3b11b210520f62500a7adf3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b7bc182ec1846be437351e44164089d988f9d0dd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ba6b6f1502fa55621d1db23f253d54322bdbe4e0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e649b5916725c68f44ebf45fb396df563c5dbaf2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45852","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.193","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix double free in rxe_srq_from_init\n\nIn rxe_srq_from_init(), the queue pointer 'q' is assigned to\n'srq->rq.queue' before copying the SRQ number to user space.\nIf copy_to_user() fails, the function calls rxe_queue_cleanup()\nto free the queue, but leaves the now-invalid pointer in\n'srq->rq.queue'.\n\nThe caller of rxe_srq_from_init() (rxe_create_srq) eventually\ncalls rxe_srq_cleanup() upon receiving the error, which triggers\na second rxe_queue_cleanup() on the same memory, leading to a\ndouble free.\n\nThe call trace looks like this:\n   kmem_cache_free+0x.../0x...\n   rxe_queue_cleanup+0x1a/0x30 [rdma_rxe]\n   rxe_srq_cleanup+0x42/0x60 [rdma_rxe]\n   rxe_elem_release+0x31/0x70 [rdma_rxe]\n   rxe_create_srq+0x12b/0x1a0 [rdma_rxe]\n   ib_create_srq_user+0x9a/0x150 [ib_core]\n\nFix this by moving 'srq->rq.queue = q' after copy_to_user."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0beefd0e15d962f497aad750b2d5e9c3570b66d1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/22b8c23a3b92d023614bb00896fe364b2c1a31d3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/26793db60925df1e88a29466813d586cbc190b8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/26a9cfe12f4ffdeaa136f252478986fa5f397ddc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5c07aef09a121a4cd622a71eb0753a9e135c84a8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/af5956243018918130d52c9f671efdb40bab3366","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ce6f8e007682f378279d4cf83b240f12d52c723b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d286f0d4e3ad3caf5f0e673cdad7bf89bf37d947","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45853","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.330","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Use kvfree instead of kfree in amdgpu_gmc_get_nps_memranges()\n\namdgpu_discovery_get_nps_info() internally allocates memory for ranges\nusing kvcalloc(), which may use vmalloc() for large allocation. Using\nkfree() to release vmalloc memory will lead to a memory corruption.\n\nUse kvfree() to safely handle both kmalloc and vmalloc allocations.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0c44d61945c4a80775292d96460aa2f22e62f86c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/16e7e7ad8cdc6b4c4af7f31e262f1494c1b2a55e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9ae85b0c1909b6c6bfd2636b04cdaf7f520bf2b5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f441538893eba6347b983f2904819ca6c99da65e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45854","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.437","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: inside-secure/eip93 - unregister only available algorithm\n\nEIP93 has an options register. This register indicates which crypto\nalgorithms are implemented in silicon. Supported algorithms are\nregistered on this basis. Unregister algorithms on the same basis.\nCurrently, all algorithms are unregistered, even those not supported\nby HW. This results in panic on platforms that don't have all options\nimplemented in silicon."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0ceeadc7b53a041d89d5843f6bf0ccb7c98b0b4f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/243d642ff5809811208fa1707b7ab8a6ab4b1d68","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c1c5a1d720fdacea060e106c7dd79417243d121","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45855","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.543","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nata: libata-scsi: avoid Non-NCQ command starvation\n\nWhen a non-NCQ command is issued while NCQ commands are being executed,\nata_scsi_qc_issue() indicates to the SCSI layer that the command issuing\nshould be deferred by returning SCSI_MLQUEUE_XXX_BUSY.  This command\ndeferring is correct and as mandated by the ACS specifications since\nNCQ and non-NCQ commands cannot be mixed.\n\nHowever, in the case of a host adapter using multiple submission queues,\nwhen the target device is under a constant load of NCQ commands, there\nare no guarantees that requeueing the non-NCQ command will be executed\nlater and it may be deferred again repeatedly as other submission queues\ncan constantly issue NCQ commands from different CPUs ahead of the\nnon-NCQ command. This can lead to very long delays for the execution of\nnon-NCQ commands, and even complete starvation for these commands in the\nworst case scenario.\n\nSince the block layer and the SCSI layer do not distinguish between\nqueueable (NCQ) and non queueable (non-NCQ) commands, libata-scsi SAT\nimplementation must ensure forward progress for non-NCQ commands in the\npresence of NCQ command traffic. This is similar to what SAS HBAs with a\nhardware/firmware based SAT implementation do.\n\nImplement such forward progress guarantee by limiting requeueing of\nnon-NCQ commands from ata_scsi_qc_issue(): when a non-NCQ command is\nreceived and NCQ commands are in-flight, do not force a requeue of the\nnon-NCQ command by returning SCSI_MLQUEUE_XXX_BUSY and instead return 0\nto indicate that the command was accepted but hold on to the qc using\nthe new deferred_qc field of struct ata_port.\n\nThis deferred qc will be issued using the work item deferred_qc_work\nrunning the function ata_scsi_deferred_qc_work() once all in-flight\ncommands complete, which is checked with the port qc_defer() callback\nreturn value indicating that no further delay is necessary. This check\nis done using the helper function ata_scsi_schedule_deferred_qc() which\nis called from ata_scsi_qc_complete(). This thus excludes this mechanism\nfrom all internal non-NCQ commands issued by ATA EH.\n\nWhen a port deferred_qc is non NULL, that is, the port has a command\nwaiting for the device queue to drain, the issuing of all incoming\ncommands (both NCQ and non-NCQ) is deferred using the regular busy\nmechanism. This simplifies the code and also avoids potential denial of\nservice problems if a user issues too many non-NCQ commands.\n\nFinally, whenever ata EH is scheduled, regardless of the reason, a\ndeferred qc is always requeued so that it can be retried once EH\ncompletes. This is done by calling the function\nata_scsi_requeue_deferred_qc() from ata_eh_set_pending(). This avoids\nthe need for any special processing for the deferred qc in case of NCQ\nerror, link or device reset, or device timeout."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0ea84089dbf62a92dc7889c79e6b18fc89260808","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5d61a38a60e62750526d94663b69b7ac5c7f07a5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/888cd7e40adb2ef4af1b4d3b6e2e83ad409ae8c2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ce22aaed011206fed9cbd8c9c2d44718607f31ee","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45856","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.670","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send\n\nib_uverbs_post_send() uses cmd.wqe_size from userspace without any\nvalidation before passing it to kmalloc() and using the allocated\nbuffer as struct ib_uverbs_send_wr.\n\nIf a user provides a small wqe_size value (e.g., 1), kmalloc() will\nsucceed, but subsequent accesses to user_wr->opcode, user_wr->num_sge,\nand other fields will read beyond the allocated buffer, resulting in\nan out-of-bounds read from kernel heap memory. This could potentially\nleak sensitive kernel information to userspace.\n\nAdditionally, providing an excessively large wqe_size can trigger a\nWARNING in the memory allocation path, as reported by syzkaller.\n\nThis is inconsistent with ib_uverbs_unmarshall_recv() which properly\nvalidates that wqe_size >= sizeof(struct ib_uverbs_recv_wr) before\nproceeding.\n\nAdd the same validation for ib_uverbs_post_send() to ensure wqe_size\nis at least sizeof(struct ib_uverbs_send_wr)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/01c9b152647dc70dc06a4a2eff86ebb3b3c76075","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1956f0a74ccf5dc9c3ef717f2985c3ed3400aab0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9b5ac1c15334d46c0dbd49d64a2257b929500163","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9c15ec4cd4e7f57c6bbcb4e73e99290f150dd2a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bef70ff9841990658610512b4a18e4a88c9b4df6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bf1feed1a7886af945f92890493aefd2b5c9928a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bf4454da8b1e712714628c0a0d6e7845bb40790a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d533425ac1f2925b4fc3e4ed9b9d72362cb23475","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45857","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.793","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: csiostor: Fix dereference of null pointer rn\n\nThe error exit path when rn is NULL ends up deferencing the null pointer rn\nvia the use of the macro CSIO_INC_STATS. Fix this by adding a new error\nreturn path label after the use of the macro to avoid the deference."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/16ccbfddcb32365138c806cf572e69b42a193c5c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1982257570b84dc33753d536dd969fd357a014e9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/25ab5e97d3c5f3ed594b4a65d1cc99dc24756681","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/25d623f0d77c11a256a54e860d00c239aa9a2583","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3bbbab7b6949c76df64210348adbefedaabbf549","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/44ef9f81392de885883f73b9f5c43936a82ae9d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/526ea3c0ccd495b0079db3e28fdddd51c1bf01f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6037124dbf675fbd0a6248aaf04cf07387b8c323","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45858","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:57.943","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: don't zero the entire extent if EXT4_EXT_DATA_PARTIAL_VALID1\n\nWhen allocating initialized blocks from a large unwritten extent, or\nwhen splitting an unwritten extent during end I/O and converting it to\ninitialized, there is currently a potential issue of stale data if the\nextent needs to be split in the middle.\n\n       0  A      B  N\n       [UUUUUUUUUUUU]    U: unwritten extent\n       [--DDDDDDDD--]    D: valid data\n          |<-  ->| ----> this range needs to be initialized\n\next4_split_extent() first try to split this extent at B with\nEXT4_EXT_DATA_ENTIRE_VALID1 and EXT4_EXT_MAY_ZEROOUT flag set, but\next4_split_extent_at() failed to split this extent due to temporary lack\nof space. It zeroout B to N and mark the entire extent from 0 to N\nas written.\n\n       0  A      B  N\n       [WWWWWWWWWWWW]    W: written extent\n       [SSDDDDDDDDZZ]    Z: zeroed, S: stale data\n\next4_split_extent() then try to split this extent at A with\nEXT4_EXT_DATA_VALID2 flag set. This time, it split successfully and left\na stale written extent from 0 to A.\n\n       0  A      B   N\n       [WW|WWWWWWWWWW]\n       [SS|DDDDDDDDZZ]\n\nFix this by pass EXT4_EXT_DATA_PARTIAL_VALID1 to ext4_split_extent_at()\nwhen splitting at B, don't convert the entire extent to written and left\nit as unwritten after zeroing out B to N. The remaining work is just\nlike the standard two-part split. ext4_split_extent() will pass the\nEXT4_EXT_DATA_VALID2 flag when it calls ext4_split_extent_at() for the\nsecond time, allowing it to properly handle the split. If the split is\nsuccessful, it will keep extent from 0 to A as unwritten."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1bf6974822d1dba86cf11b5f05498581cf3488a2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/58ddae5d77b1db3a27b891c75a8fa120239ac092","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7015fcf473796e1d2d876f241bd9e0c36f3d4eef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d17857b4fb9ba5745b59be0ef38fd532991fccbf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d67c8ecf3d8fda9b8ef80e6f665d84b6d6ac9d88","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45859","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.060","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation\n\nUlrich reports a regression with nfqueue:\n\nIf an application did not set the 'F_GSO' capability flag and a gso\npacket with an unconfirmed nf_conn entry is received all packets are\nnow dropped instead of queued, because the check happens after\nskb_gso_segment().  In that case, we did have exclusive ownership\nof the skb and its associated conntrack entry.  The elevated use\ncount is due to skb_clone happening via skb_gso_segment().\n\nMove the check so that its peformed vs. the aggregated packet.\n\nThen, annotate the individual segments except the first one so we\ncan do a 2nd check at reinject time.\n\nFor the normal case, where userspace does in-order reinjects, this avoids\npacket drops: first reinjected segment continues traversal and confirms\nentry, remaining segments observe the confirmed entry.\n\nWhile at it, simplify nf_ct_drop_unconfirmed(): We only care about\nunconfirmed entries with a refcnt > 1, there is no need to special-case\ndying entries.\n\nThis only happens with UDP.  With TCP, the only unconfirmed packet will\nbe the TCP SYN, those aren't aggregated by GRO.\n\nNext patch adds a udpgro test case to cover this scenario."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/207b3ebacb6113acaaec0d171d5307032c690004","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/23901aa6b8a2f294c4b774436b4691f3ff863a8f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/79b713ef4261a8ead96af4703f89d0b5f25532e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b740e7ddd7ca0dbfeafca3f5e52717206cf28524","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45860","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.187","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_conncount: increase the connection clean up limit to 64\n\nAfter the optimization to only perform one GC per jiffy, a new problem\nwas introduced. If more than 8 new connections are tracked per jiffy the\nlist won't be cleaned up fast enough possibly reaching the limit\nwrongly.\n\nIn order to prevent this issue, only skip the GC if it was already\ntriggered during the same jiffy and the increment is lower than the\nclean up limit. In addition, increase the clean up limit to 64\nconnections to avoid triggering GC too often and do more effective GCs.\n\nThis has been tested using a HTTP server and several\nperformance tools while having nft_connlimit/xt_connlimit or OVS limit\nconfigured.\n\nOutput of slowhttptest + OVS limit at 52000 connections:\n\n slow HTTP test status on 340th second:\n initializing:        0\n pending:             432\n connected:           51998\n error:               0\n closed:              0\n service available:   YES"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0792ad077d776c2dcf20f0484e2461ded1b77a24","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0af0812baf2d363176c9b76fc07e33f13aede8db","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/13eede458fdf231f1bf96a398feea4ad1553f14c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/21d033e472735ecec677f1ae46d6740b5e47a4f3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3d0994ed0aa1fc0a2c5e620b765e8defdd021bff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6e5fa7add3e76da068a478d905be64be8fa4e80a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a5c9e14e0e8923218ae881d5e78c990c07694966","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fa85432d58c8e74b39333edbf8d28df2985dfc79","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45861","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.323","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix slab-use-after-free in qd_put\n\nCommit a475c5dd16e5 (\"gfs2: Free quota data objects synchronously\")\nstarted freeing quota data objects during filesystem shutdown instead of\nputting them back onto the LRU list, but it failed to remove these\nobjects from the LRU list, causing LRU list corruption.  This caused\nuse-after-free when the shrinker (gfs2_qd_shrink_scan) tried to access\nalready-freed objects on the LRU list.\n\nFix this by removing qd objects from the LRU list before freeing them in\nqd_put().\n\nInitial fix from Deepanshu Kartikey <kartikey406@gmail.com>."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1d47922b98046b8070a77347fb883a6523792803","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/22150a7d401d9e9169b9b68e05bed95f7f49bf69","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/80fff26d7a0c3926b511661c27eecc811a420eef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca7c67bdd293089b3483f18886d6b2d0037d2ad9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45862","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.430","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Flush cache for PASID table before using it\n\nWhen writing the address of a freshly allocated zero-initialized PASID\ntable to a PASID directory entry, do that after the CPU cache flush for\nthis PASID table, not before it, to avoid the time window when this\nPASID table may be already used by non-coherent IOMMU hardware while\nits contents in RAM is still some random old data, not zero-initialized."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0616137b70e6d9a547d4b60df8e1b64e36d83661","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/22d169bdd2849fe6bd18c2643742e1c02be6451c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/36244dfd3853f7bf89d03b8e90d56b23ce7fbc16","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/36990407cdd257473607e33802d00e978af2759e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5962c30a6f05ea1ab73f039e235bb30716243517","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c93f23375d8c410954b0df825e814b632fd62b9d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cd75e77125c8a51754ca4cd60b4ca083ed735d1d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d15cda135148ea7ba929cfdbcf208182bc29a7aa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45863","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.557","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: dw: Fix memory leak in dw_i3c_master_i2c_xfers()\n\nThe dw_i3c_master_i2c_xfers() function allocates memory for the xfer\nstructure using dw_i3c_master_alloc_xfer(). If pm_runtime_resume_and_get()\nfails, the function returns without freeing the allocated xfer, resulting\nin a memory leak.\n\nAdd a dw_i3c_master_free_xfer() call to the error path to ensure the\nallocated memory is properly freed.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/140a45bd4f6db7d1b30cab967d29689b946c52fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2537089413514caaa9a5fdeeac3a34d45100f747","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8e71414e252c1cb235911008a98fd47927d3a55c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a2c41467ef42f69a3958493a0395ba75174710dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45864","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.667","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: prevent infinite loops caused by the next valid being the same\n\nWhen processing valid within the range [valid : pos), if valid cannot\nbe retrieved correctly, for example, if the retrieved valid value is\nalways the same, this can trigger a potential infinite loop, similar\nto the hung problem reported by syzbot [1].\n\nAdding a check for the valid value within the loop body, and terminating\nthe loop and returning -EINVAL if the value is the same as the current\nvalue, can prevent this.\n\n[1]\nINFO: task syz.4.21:6056 blocked for more than 143 seconds.\nCall Trace:\n rwbase_write_lock+0x14f/0x750 kernel/locking/rwbase_rt.c:244\n inode_lock include/linux/fs.h:1027 [inline]\n ntfs_file_write_iter+0xe6/0x870 fs/ntfs3/file.c:1284"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/27b75ca4e51e3e4554dc85dbf1a0246c66106fd3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4bf3bafb8e0635ed93e3cd4156dcbcc0fb960cb4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/50c822fcb36768f1fb356f05b02a2248ef81936d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d93239b4fc479f7c0a412dd196ec0ca2672d14a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/71c8b966ec56e13c02388c1312910588bb49be7a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a47a2bb9aa6455d5cee1045814a60c749309c92b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b97e371e5d1c13d722335d46eb8bc1a22b272a0e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45865","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.787","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmctp i2c: initialise event handler read bytes\n\nSet a 0xff value for i2c reads of an mctp-i2c device. Otherwise reads\nwill return \"val\" from the i2c bus driver. For i2c-aspeed and\ni2c-npcm7xx that is a stack uninitialised u8.\n\nTested with \"i2ctransfer -y 1 r10@0x34\" where 0x34 is a mctp-i2c\ninstance, now it returns all 0xff."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/11f83253244060b5de5eac787f61ae3f3e559d01","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1eeedb310229bfee9dd4d992e5bba33fe1378a8f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2a14e91b6d76639dac70ea170f4384c1ee3cb48d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6ff2ebfef75fbc57d937d8fbe738b967edf2d331","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/93e01e837e105299f1c259ef71f6e1ec4fe806e3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fa9861e5c8af7651dddfa8d490aaada17ae33b6c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45866","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:16:58.963","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nserial: caif: fix use-after-free in caif_serial ldisc_close()\n\nThere is a use-after-free bug in caif_serial where handle_tx() may\naccess ser->tty after the tty has been freed.\n\nThe race condition occurs between ldisc_close() and packet transmission:\n\n    CPU 0 (close)                     CPU 1 (xmit)\n    -------------                     ------------\n    ldisc_close()\n      tty_kref_put(ser->tty)\n      [tty may be freed here]\n                     <-- race window -->\n                                      caif_xmit()\n                                        handle_tx()\n                                          tty = ser->tty  // dangling ptr\n                                          tty->ops->write() // UAF!\n      schedule_work()\n        ser_release()\n          unregister_netdevice()\n\nThe root cause is that tty_kref_put() is called in ldisc_close() while\nthe network device is still active and can receive packets.\n\nSince ser and tty have a 1:1 binding relationship with consistent\nlifecycles (ser is allocated in ldisc_open and freed in ser_release\nvia unregister_netdevice, and each ser binds exactly one tty), we can\nsafely defer the tty reference release to ser_release() where the\nnetwork device is unregistered.\n\nFix this by moving tty_kref_put() from ldisc_close() to ser_release(),\nafter unregister_netdevice(). This ensures the tty reference is held\nas long as the network device exists, preventing the UAF.\n\nNote: We save ser->tty before unregister_netdevice() because ser is\nembedded in netdev's private data and will be freed along with netdev\n(needs_free_netdev = true).\n\nHow to reproduce: Add mdelay(500) at the beginning of ldisc_close()\nto widen the race window, then run the reproducer program [1].\n\nNote: There is a separate deadloop issue in handle_tx() when using\nPORT_UNKNOWN serial ports (e.g., /dev/ttyS3 in QEMU without proper\nserial backend). This deadloop exists even without this patch,\nand is likely caused by inconsistency between uart_write_room() and\nuart_write() in serial core. It has been addressed in a separate\npatch [2].\n\nKASAN report:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in handle_tx+0x5d1/0x620\nRead of size 1 at addr ffff8881131e1490 by task caif_uaf_trigge/9929\n\nCall Trace:\n <TASK>\n dump_stack_lvl+0x10e/0x1f0\n print_report+0xd0/0x630\n kasan_report+0xe4/0x120\n handle_tx+0x5d1/0x620\n dev_hard_start_xmit+0x9d/0x6c0\n __dev_queue_xmit+0x6e2/0x4410\n packet_xmit+0x243/0x360\n packet_sendmsg+0x26cf/0x5500\n __sys_sendto+0x4a3/0x520\n __x64_sys_sendto+0xe0/0x1c0\n do_syscall_64+0xc9/0xf80\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f615df2c0d7\n\nAllocated by task 9930:\n\nFreed by task 64:\n\nLast potentially related work creation:\n\nThe buggy address belongs to the object at ffff8881131e1000\n which belongs to the cache kmalloc-cg-2k of size 2048\nThe buggy address is located 1168 bytes inside of\n freed 2048-byte region [ffff8881131e1000, ffff8881131e1800)\n\nThe buggy address belongs to the physical page:\npage_owner tracks the page as allocated\npage last free pid 9778 tgid 9778 stack trace:\n\nMemory state around the buggy address:\n ffff8881131e1380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881131e1400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n>ffff8881131e1480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n                         ^\n ffff8881131e1500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881131e1580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n==================================================================\n[1]: https://gist.github.com/mrpre/f683f244544f7b11e7fa87df9e6c2eeb\n[2]: https://lore.kernel.org/linux-serial/20260204074327.226165-1-jiayuan.chen@linux.dev/T/#u"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/308e7e4d0a846359685f40aade023aee7b27284c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/331e2b7051635780edea248dd08ae2026c126f4a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/40962f2bf8cdba63af23aec95ad3f49b689e58e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4e63d6f68544ae5269ac9735ae5b69b59b5b8725","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/52731ef4438155cea782fac74e547a327ab9e7c5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5e266ba8d330d3b8e5bc198f238cd8901826cfa1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c8c197aaa56b25a2d54f3aa07e27e228d6c08546","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d3c75db4e0460641dbcd274b40867e252d801da1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45867","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.023","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: act8945a: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0768e8525a46df103647ca5059b32320d7fd17e4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3291c51d4684d048dd2eb91b5b65fcfdaf72141f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/697bb5dc0cb4791e244f3970b067bc1ef33be9d9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/76a42ba547a9b2e2337894f67a4d9247445007d5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83c1bd466c514cb24ca6ef347c5aac76a13c4e1e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d023ef9f748b2090f7a9dbdd5c622b6ad99088ea","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f27eb76def5c07e4d7cc468b40741f19dafc83ce","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f2a0777b1e5a3cee1712c4d3e9095c0df8fc8cb3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45868","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.167","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: single: fix refcount leak in pcs_add_gpio_func()\n\nof_parse_phandle_with_args() returns a device_node pointer with refcount\nincremented in gpiospec.np. The loop iterates through all phandles but\nnever releases the reference, causing a refcount leak on each iteration.\n\nAdd of_node_put() calls to release the reference after extracting the\nneeded arguments and on the error path when devm_kzalloc() fails.\n\nThis bug was detected by our static analysis tool and verified by my\ncode review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/191bfd5710d6a7f48ba4315d8d3e908dcc15243c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/353353309b0f7afa407df29e455f9d15b5acc296","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3e3b28bb0b6ddc521a4fdd1c1ba0d35017a0796b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/456a60d06c09a92680dc35fabca68024badcc28e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5b9e84d27e310f22c4ba45fedbc4f5baf43dd823","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7814b1431848854b56717086e2b61bea3c59753d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/99cc7352156c65201c675f750e0e77c4c73d93f5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e2e367e56bacb93ce5ac73f0b3297d5c83d38dd4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45869","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.290","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed()\n\nIn `probe()`, `request_irq()` is called before allocating/registering a\n`power_supply` handle. If an interrupt is fired between the call to\n`request_irq()` and `power_supply_register()`, the `power_supply` handle\nwill be used uninitialized in `power_supply_changed()` in\n`wm97xx_bat_update()` (triggered from the interrupt handler). This will\nlead to a `NULL` pointer dereference since\n\nFix this racy `NULL` pointer dereference by making sure the IRQ is\nrequested _after_ the registration of the `power_supply` handle. Since\nthe IRQ is the last thing requests in the `probe()` now, remove the\nerror path for freeing it. Instead add one for unregistering the\n`power_supply` handle when IRQ request fails."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/39fe0eac6d755ef215026518985fcf8de9360e9e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3d7b5391bb95505b3581c1fb77150c467ab92864","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/438f9a303ea8b55162b2d5376490c2ab3ec165a0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/86183153c299e8bb1839e717286d6c6f39508a59","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/93bdf715d33cf5ee01c58e8546c2469c71ce082a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9b7d77cb046b4487e8e511e04e62b6f416ce845c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c0def811ad8d642dca9b6d31a198cc39f5f90837","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dfaf235d5a6b60cbf115a14a656946303ad007b7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45870","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.420","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: auth_gss: fix memory leaks in XDR decoding error paths\n\nThe gssx_dec_ctx(), gssx_dec_status(), and gssx_dec_name()\nfunctions allocate memory via gssx_dec_buffer(), which calls\nkmemdup(). When a subsequent decode operation fails, these\nfunctions return immediately without freeing previously\nallocated buffers, causing memory leaks.\n\nThe leak in gssx_dec_ctx() is particularly relevant because\nthe caller (gssp_accept_sec_context_upcall) initializes several\nbuffer length fields to non-zero values, resulting in memory\nallocation:\n\n    struct gssx_ctx rctxh = {\n        .exported_context_token.len = GSSX_max_output_handle_sz,\n        .mech.len = GSS_OID_MAX_LEN,\n        .src_name.display_name.len = GSSX_max_princ_sz,\n        .targ_name.display_name.len = GSSX_max_princ_sz\n    };\n\nIf, for example, gssx_dec_name() succeeds for src_name but\nfails for targ_name, the memory allocated for\nexported_context_token, mech, and src_name.display_name\nremains unreferenced and cannot be reclaimed.\n\nAdd error handling with goto-based cleanup to free any\npreviously allocated buffers before returning an error."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3b56eb90feb8a3709417f5624f3871847d42bcb1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3e6397b056335cc56ef0e9da36c95946a19f5118","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/64303b92d94c0c7845a273acd8d84b796d6f1db7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b4af3806846778799cd4ab0766dc18341e777264","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c81431b1b9fbd21e9a5a9211b5517b7295d18e6a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/caf7eff432e91a9eba1c79fa545c2f54be15d62b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d79b9097a6a2b91471b40755f1225364be5d85ff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/df10f23defff22c8d55fe6db74f6e4ce927145bf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45871","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.543","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: st33zp24: Fix missing cleanup on get_burstcount() error\n\nget_burstcount() can return -EBUSY on timeout. When this happens,\nst33zp24_send() returns directly without releasing the locality\nacquired earlier.\n\nUse goto out_err to ensure proper cleanup when get_burstcount() fails."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1256c6dc96d1e687e6e9b63088156ed07411b00c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3e91b44c93ad2871f89fc2a98c5e4fe6ca5db3d9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4fffb77d35d038f146e6192da583dbe4971d869e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7687133509cf66ced120b667fefd21f80bf17993","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a51cff9be046e13e1c1b2fe45d5c48b582ec9b8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cc09d55f519e15355de343264a22ac6682b8305e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e0ce3da82341fcd6194175f1837946b2a894c625","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec15eb67fe9df87981b4829b901ec254273ca483","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45872","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.670","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: smartpqi: Fix memory leak in pqi_report_phys_luns()\n\npqi_report_phys_luns() fails to release the rpl_list buffer when\nencountering an unsupported data format or when the allocation for\nrpl_16byte_wwid_list fails. These early returns bypass the cleanup logic,\nleading to memory leaks.\n\nConsolidate the error handling by adding an out_free_rpl_list label and use\ngoto statements to ensure rpl_list is consistently freed on failure.\n\nCompile tested only. Issue found using a prototype static analysis tool and\ncode review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/41b37312bd9722af77ec7817ccf22d7a4880c289","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/454570434114e4862767f506a442a0f110b639b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d52e13122d3771f753dd73ae6512fa01f58015cb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e5579ebaadc7b699868dad0f591a7bf83cd647e1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f471ecfec093e39ef8fd08978413793087daa14d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fdf1188cfa80f88c9f18d58cb33d57ff40e70e26","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45873","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.780","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_rbtree: check for partial overlaps in anonymous sets\n\nUserspace provides an optimized representation in case intervals are\nadjacent, where the end element is omitted.\n\nThe existing partial overlap detection logic skips anonymous set checks\non start elements for this reason.\n\nHowever, it is possible to add intervals that overlap to this anonymous\nwhere two start elements with the same, eg. A-B, A-C where C < B.\n\n      start     end\n\tA        B\n      start  end\n        A     C\n\nRestore the check on overlapping start elements to report an overlap."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/029e5f6a95e905b12d6bc20421be32a01e0eb311","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/05feaf826390fd16f1deb89dd9412def3b2a280f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4780ec142cbb24b794129d3080eee5cac2943ffc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7ca5813e1b21ef300e04593f47b073ef3217aac6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dad14d22dff1a191612acb98facceb303d0524a2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e6497e06a102870803a59570d75ed2c36d7e11b3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1381ce0a1dd013610985e1c4260908163a427df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1535d56fc3f6c625b7e0559c006bd0318791bb1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45874","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:00.913","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nphy: freescale: imx8qm-hsio: fix NULL pointer dereference\n\nDuring the probe the refclk_pad pointer is set to NULL if the\n'fsl,refclk-pad-mode' property is not defined in the devicetree node. But\nin imx_hsio_configure_clk_pad() this pointer is unconditionally used which\ncould result in a NULL pointer dereference. So check the pointer before to\nuse it."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4dd5d4c0361af0a3fd24f45c815996abf4429770","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8d29e81e9cdec84d4b9acb1736550d35e86c88af","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a771b386cb6c6e582e7b50f8eeff3347ff887f71","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dd8b9ba3d9701832cfb5dcefd8b43250df28dbc2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45875","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.117","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: arizona: Fix regulator resource leak on wm5102_clear_write_sequencer() failure\n\nThe wm5102_clear_write_sequencer() helper may return an error\nand just return, bypassing the cleanup sequence and causing\nregulators to remain enabled, leading to a resource leak.\n\nChange the direct return to jump to the err_reset label to\nproperly free the resources."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2049820d1e635e467d795237fd40287213d92349","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3ea01691738b0decb63ea2705d2cdf27f6f26fc0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/445cec7b4fbb1546836ae8e332d158e8d37d0fb6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4feb753ba6e5e5bbaba868b841a2db41c21e56fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/54eafc1b0dbcf79c5f8b6dc8d9e92e56b9384c0a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5a4923726a165593d7601834a6fb2a10ab47b85d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/933c5463873582baaecf5c38401ec4095b1c6269","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e0527c09bcf1e6beeb685a7f4177683866b8609c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45876","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.280","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\narm64/gcs: Fix error handling in arch_set_shadow_stack_status()\n\nalloc_gcs() returns an error-encoded pointer on failure, which comes\nfrom do_mmap(), not NULL.\n\nThe current NULL check fails to detect errors, which could lead to using\nan invalid GCS address.\n\nUse IS_ERR_VALUE() to properly detect errors, consistent with the\ncheck in gcs_alloc_thread_stack()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/53c998527ffa60f9deda8974a11ad39790684159","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a4741114c9622346c4bbb8cc2bbd88153616ffaf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c787a235deb33be6eda40beee8f561da5fd8cb8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45877","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.397","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: intel-ish-hid: fix NULL-ptr-deref in ishtp_bus_remove_all_clients\n\nDuring a warm reset flow, the cl->device pointer may be NULL if the\nreset occurs while clients are still being enumerated. Accessing\ncl->device->reference_count without a NULL check leads to a kernel panic.\n\nThis issue was identified during multi-unit warm reboot stress clycles.\nAdd a defensive NULL check for cl->device to ensure stability under\nsuch intensive testing conditions.\n\nKASAN: null-ptr-deref in range [0000000000000000-0000000000000007]\nWorkqueue: ish_fw_update_wq fw_reset_work_fn\n\nCall Trace:\n ishtp_bus_remove_all_clients+0xbe/0x130 [intel_ishtp]\n ishtp_reset_handler+0x85/0x1a0 [intel_ishtp]\n fw_reset_work_fn+0x8a/0xc0 [intel_ish_ipc]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0b605e8ce60698c27a26f512968a597fd620d2e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/272dac57caa981718e7188c80c703e7bb1998054","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/56f7db581ee73af53cd512e00a6261a025bf1d58","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/feb4bcfd405282de60aba321f13a1272b30c5af4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45878","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.547","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix watch_id bounds checking in debug address watch v2\n\nThe address watch clear code receives watch_id as an unsigned value\n(u32), but some helper functions were using a signed int and checked\nbits by shifting with watch_id.\n\nIf a very large watch_id is passed from userspace, it can be converted\nto a negative value.  This can cause invalid shifts and may access\nmemory outside the watch_points array.\n\ndrm/amdkfd: Fix watch_id bounds checking in debug address watch v2\n\nFix this by checking that watch_id is within MAX_WATCH_ADDRESSES before\nusing it.  Also use BIT(watch_id) to test and clear bits safely.\n\nThis keeps the behavior unchanged for valid watch IDs and avoids\nundefined behavior for invalid ones.\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_debug.c:448\nkfd_dbg_trap_clear_dev_address_watch() error: buffer overflow\n'pdd->watch_points' 4 <= u32max user_rl='0-3,2147483648-u32max' uncapped\n\ndrivers/gpu/drm/amd/amdgpu/../amdkfd/kfd_debug.c\n    433 int kfd_dbg_trap_clear_dev_address_watch(struct kfd_process_device *pdd,\n    434                                         uint32_t watch_id)\n    435 {\n    436         int r;\n    437\n    438         if (!kfd_dbg_owns_dev_watch_id(pdd, watch_id))\n\nkfd_dbg_owns_dev_watch_id() doesn't check for negative values so if\nwatch_id is larger than INT_MAX it leads to a buffer overflow.\n(Negative shifts are undefined).\n\n    439                 return -EINVAL;\n    440\n    441         if (!pdd->dev->kfd->shared_resources.enable_mes) {\n    442                 r = debug_lock_and_unmap(pdd->dev->dqm);\n    443                 if (r)\n    444                         return r;\n    445         }\n    446\n    447         amdgpu_gfx_off_ctrl(pdd->dev->adev, false);\n--> 448         pdd->watch_points[watch_id] = pdd->dev->kfd2kgd->clear_address_watch(\n    449                                                         pdd->dev->adev,\n    450                                                         watch_id);\n\nv2: (as per, Jonathan Kim)\n - Add early watch_id >= MAX_WATCH_ADDRESSES validation in the set path to\n   match the clear path.\n - Drop the redundant bounds check in kfd_dbg_owns_dev_watch_id()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2b36c0c1bcbbe15f6cfa9652084b3124c835a150","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3c38a0f07aa2bfef2b219b1f045534ad93f85afd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5a19302cab5cec7ae7f1a60c619951e6c17d8742","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/971bf8e61e9b4abaacf9b35eaf76ec222758f9d6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0d367e13db63a6ed76ee0d0a8c3a58c1fa98488","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45879","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.677","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: bq25980: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/03d1e4ee4e6aa6d2966e883e4ca0e5be73bf1b7c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0560a4b09c92e2ecaa883965cf6f9ca51c158ff9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0de95d29d847c6217b7d5845e24a71a4aee7b359","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/16875e3b7bc9e59bfa0acaf1e43f275a6f42a30f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4aeaf03c17260415c2fdd55992f9ad4188d5455a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5f0b1cb41906e86b64bf69f5ededb83b0d757c27","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/86f93dfb23f5bf4f285c4256a7e909d222f7de56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/abea607ff2f62f4c0a5fb29f7fbdaaab163276a4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45880","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.813","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/P2PDMA: Release per-CPU pgmap ref when vm_insert_page() fails\n\nWhen vm_insert_page() fails in p2pmem_alloc_mmap(), p2pmem_alloc_mmap()\ndoesn't invoke percpu_ref_put() to free the per-CPU ref of pgmap acquired\nafter gen_pool_alloc_owner(), and memunmap_pages() will hang forever when\ntrying to remove the PCI device.\n\nFix it by adding the missed percpu_ref_put()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/51b7181cfbedf289ce794b6d97a1c596c309ec38","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6220694c52a5a04102b48109e4f24e958b559bd3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a1f4dc72efc3204db95d052058d785cad7ce755f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/baa42b756d183a59572f3890981a3d32b8d05d40","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e19cce88ec4c4877f4ff2469099b9cf23cc3e93e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45881","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:01.930","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: mediatek: svs: Fix memory leak in svs_enable_debug_write()\n\nIn svs_enable_debug_write(), the buf allocated by memdup_user_nul()\nis leaked if kstrtoint() fails.\n\nFix this by using __free(kfree) to automatically free buf, eliminating\nthe need for explicit kfree() calls and preventing leaks.\n\n[Angelo: Added missing cleanup.h inclusion]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/06195456c4e4de3826c4ca60eca941c472f991d0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0f6498077faa9cd89bb787bcc57063494a6f0601","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/47a3e372f7d68776adb749a27c0ec9058ff1b4fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6259094ee806fb813ca95894c65fb80e2ec98bf1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6bb10466e0884b4a68d4a1f3f4bb87eeb471c18a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a58c97828911c0b6e25d6b556789da974003efda","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45882","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.047","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: pm8916_bms_vm: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/17db6b3abd823c9fba3f3413c4f0f432d99d49dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/62914959b35e9a1e29cc0f64cb8cfc5075a5366f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a8b7117ae3a791c6a328674d05a06cd45d8241bd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b69bb88e20c6f8e998dff3e13a316207f49d3fa2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45883","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.170","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\niio: sca3000: Fix a resource leak in sca3000_probe()\n\nspi->irq from request_threaded_irq() not released when\niio_device_register() fails. Add an return value check and jump to a\ncommon error handler when iio_device_register() fails."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/103ac8e3a7f345a0966ef582b8a874ac31a92c7c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/40c860ece22542178cddcf01b08644bcdbc597b3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/517d9f2b963089b3d64c23accf7920d77f5a30c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/55e13abf22c27a3b0ab5cf941dd07a2d9786736c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/597d749c5180f3e351837e851a6131b140324e9f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/62b44ebc1f2c71db3ca2d4737c52e433f6f03038","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/84d3c396d8ae73c24dececfcc4e544ea09311e32","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e8e960c3d23fdb4882d70d34ce762368da0f1427","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45884","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.290","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: avoid per-cpu hold underflow in aa_get_buffer\n\nWhen aa_get_buffer() pulls from the per-cpu list it unconditionally\ndecrements cache->hold. If hold reaches 0 while count is still non-zero,\nthe unsigned decrement wraps to UINT_MAX. This keeps hold non-zero for a\nvery long time, so aa_put_buffer() never returns buffers to the global\nlist, which can starve other CPUs and force repeated kmalloc(aa_g_path_max)\nallocations.\n\nGuard the decrement so hold never underflows."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/202824a1f89a9786c20a3d646a7c88d223abb1b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4bcddd0f6b2e52b4c7b520e4d36a115caf5b7169","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/640cf2f09575c9dc344b3f7be2498d31e3923ead","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/80c334acc6d0bee8605a358a33e69b4aea1ffb92","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45885","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.417","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: cpcap-battery: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2841bbb5a35c4449c0a0458e8e476b2a62f95147","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2ce2334be155bd8bad6377e99984246ce4dbd08c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3ff75cba1c98349a23a8f9333981deba1972cc11","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/642f33e34b969eedec334738fd5df95d2dc42742","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c549dd3de4b3f6e726d1b8386d40ccf7d3abdbe4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cbb9b07f88a9ef6518934c41eb3e8cf840d657d5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e261be6f18929f2397cd54cd583a2df624c129c1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f3fbe309c9bfe1aac1e2b26543e9dc4829f3275a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45886","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.567","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix bpf_xdp_store_bytes proto for read-only arg\n\nWhile making some maps in Cilium read-only from the BPF side, we noticed\nthat the bpf_xdp_store_bytes proto is incorrect. In particular, the\nverifier was throwing the following error:\n\n  ; ret = ctx_store_bytes(ctx, l3_off + offsetof(struct iphdr, saddr),\n                          &nat->address, 4, 0);\n  635: (79) r1 = *(u64 *)(r10 -144)     ; R1=ctx() R10=fp0 fp-144=ctx()\n  636: (b4) w2 = 26                     ; R2=26\n  637: (b4) w4 = 4                      ; R4=4\n  638: (b4) w5 = 0                      ; R5=0\n  639: (85) call bpf_xdp_store_bytes#190\n  write into map forbidden, value_size=6 off=0 size=4\n\nnat comes from a BPF_F_RDONLY_PROG map, so R3 is a PTR_TO_MAP_VALUE.\nThe verifier checks the helper's memory access to R3 in\ncheck_mem_size_reg, as it reaches ARG_CONST_SIZE argument. The third\nargument has expected type ARG_PTR_TO_UNINIT_MEM, which includes the\nMEM_WRITE flag. The verifier thus checks for a BPF_WRITE access on R3.\nGiven R3 points to a read-only map, the check fails.\n\nConversely, ARG_PTR_TO_UNINIT_MEM can also lead to the helper reading\nfrom uninitialized memory.\n\nThis patch simply fixes the expected argument type to match that of\nbpf_skb_store_bytes."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0db169a91381a473b7974021d1c02f8da72c5775","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/57f7f6a0ad04a65c8a7a067b2f56cbbf2aec9e52","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6557f1565d779851c4db9c488c49c05a47a6e72f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7b87adeb0eb539b9b824b101bb14fb01e41240b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ddc34a1b85505c919026ddc82fafdada9a160b15","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ffb5d1c5e3933b947fc7303ad68bf0c536d0c85e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45887","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.713","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix memleak of newsk in unix_stream_connect().\n\nWhen prepare_peercred() fails in unix_stream_connect(),\nunix_release_sock() is not called for newsk, and the memory\nis leaked.\n\nLet's move prepare_peercred() before unix_create1()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4bea","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45888","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.813","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid1: fix memory leak in raid1_run()\n\nraid1_run() calls setup_conf() which registers a thread via\nmd_register_thread(). If raid1_set_limits() fails, the previously\nregistered thread is not unregistered, resulting in a memory leak\nof the md_thread structure and the thread resource itself.\n\nAdd md_unregister_thread() to the error path to properly cleanup\nthe thread, which aligns with the error handling logic of other paths\nin this function.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6abc7d5dcf0ee0f85e16e41c87fbd06231f28753","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b37588b0282a2b3cdda9db1d53712745ce66dea0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c94fd6e8a71efd047ff36930e840f3c25679e136","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec10e3dc93994b87adf7c759a4639fe34013989a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45889","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:02.927","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: do not account for OoO in mptcp_rcvbuf_grow()\n\nMPTCP-level OoOs are physiological when multiple subflows are active\nconcurrently and will not cause retransmissions nor are caused by\ndrops.\n\nAccounting for them in mptcp_rcvbuf_grow() causes the rcvbuf slowly\ndrifting towards tcp_rmem[2].\n\nRemove such accounting. Note that subflows will still account for TCP-level\nOoO when the MPTCP-level rcvbuf is propagated.\n\nThis also closes a subtle and very unlikely race condition with rcvspace\ninit; active sockets with user-space holding the msk-level socket lock,\ncould complete such initialization in the receive callback, after that the\nfirst OoO data reaches the rcvbuf and potentially triggering a divide by\nzero Oops."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/400ee4854adef1e4983812a3decf6717ea020136","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6b329393502e5857662b851a13f947209c588587","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fb7bf00b04a6b48859f52035d4e745848c2b4c79","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45890","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.040","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nxen-netback: reject zero-queue configuration from guest\n\nA malicious or buggy Xen guest can write \"0\" to the xenbus key\n\"multi-queue-num-queues\". The connect() function in the backend only\nvalidates the upper bound (requested_num_queues > xenvif_max_queues)\nbut not zero, allowing requested_num_queues=0 to reach\nvzalloc(array_size(0, sizeof(struct xenvif_queue))), which triggers\nWARN_ON_ONCE(!size) in __vmalloc_node_range().\n\nOn systems with panic_on_warn=1, this allows a guest-to-host denial\nof service.\n\nThe Xen network interface specification requires\nthe queue count to be \"greater than zero\".\n\nAdd a zero check to match the validation already present\nin xen-blkback, which has included this\nguard since its multi-queue support was added."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2993e0f904c45f8af12917344bb1cac7ccd05a60","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/654780dee9eae419e1648ea58462c4efe54518fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d1dc8014334c7fb25719999bca84d811e60a559","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/787bfa423228c4b02ba3368128f625d579085353","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/88b0fced1bbbfdb356a007592604008ffc93a6a1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ce66d6786de45b7ed9cbbdc0988054bf09e58f54","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d99f69ddc70fd9f4b8148add62209a1a8eb5c615","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec4859ac5c933e3315543a61adc1ca4358006a41","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45891","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.183","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix double free issue for tx spare buffer\n\nIn hns3_set_ringparam(), a temporary copy (tmp_rings) of the ring structure\nis created for rollback. However, the tx_spare pointer in the original\nring handle is incorrectly left pointing to the old backup memory.\n\nLater, if memory allocation fails in hns3_init_all_ring() during the setup,\nthe error path attempts to free all newly allocated rings. Since tx_spare\ncontains a stale (non-NULL) pointer from the backup, it is mistaken for\na newly allocated buffer and is erroneously freed, leading to a double-free\nof the backup memory.\n\nThe root cause is that the tx_spare field was not cleared after its value\nwas saved in tmp_rings, leaving a dangling pointer.\n\nFix this by setting tx_spare to NULL in the original ring structure\nwhen the creation of the new `tx_spare` fails. This ensures the\nerror cleanup path only frees genuinely newly allocated buffers."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/43015461662d41dcfb3bb95fadd8a2a42ad8eacf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d2f142b1e4b203387a92519d9d2e34752a79dbb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6dc10494cfe27b6f1e9adb7e293293ae39c50b7c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c3659273860bed0c8e573b865e3769abc51225a8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d2c785733dfb853ea0b53984c75662a1af230a94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fb6a4c376d454b425555b1b0bda36e99f56ec307","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fdbccddb7e7822016601829f95de4008e193f7bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45892","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.353","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop extent cache after doing PARTIAL_VALID1 zeroout\n\nWhen splitting an unwritten extent in the middle and converting it to\ninitialized in ext4_split_extent() with the EXT4_EXT_MAY_ZEROOUT and\nEXT4_EXT_DATA_VALID2 flags set, it could leave a stale unwritten extent.\n\nAssume we have an unwritten file and buffered write in the middle of it\nwithout dioread_nolock enabled, it will allocate blocks as written\nextent.\n\n       0  A      B  N\n       [UUUUUUUUUUUU] on-disk extent      U: unwritten extent\n       [UUUUUUUUUUUU] extent status tree\n       [--DDDDDDDD--]                     D: valid data\n          |<-  ->| ----> this range needs to be initialized\n\next4_split_extent() first try to split this extent at B with\nEXT4_EXT_DATA_PARTIAL_VALID1 and EXT4_EXT_MAY_ZEROOUT flag set, but\next4_split_extent_at() failed to split this extent due to temporary lack\nof space. It zeroout B to N and leave the entire extent as unwritten.\n\n       0  A      B  N\n       [UUUUUUUUUUUU] on-disk extent\n       [UUUUUUUUUUUU] extent status tree\n       [--DDDDDDDDZZ]                     Z: zeroed data\n\next4_split_extent() then try to split this extent at A with\nEXT4_EXT_DATA_VALID2 flag set. This time, it split successfully and\nleave an written extent from A to N.\n\n       0  A      B  N\n       [UUWWWWWWWWWW] on-disk extent      W: written extent\n       [UUUUUUUUUUUU] extent status tree\n       [--DDDDDDDDZZ]\n\nFinally ext4_map_create_blocks() only insert extent A to B to the extent\nstatus tree, and leave an stale unwritten extent in the status tree.\n\n       0  A      B  N\n       [UUWWWWWWWWWW] on-disk extent      W: written extent\n       [UUWWWWWWWWUU] extent status tree\n       [--DDDDDDDDZZ]\n\nFix this issue by always cached extent status entry after zeroing out\nthe second part."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6d882ea3b0931b43530d44149b79fcd4ffc13030","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a1b962a821e7a52d48212ae269b45808b4411267","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c2ee51d684adca7645e4aa74adca13f6750390bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d8ee559fccdef713f058cfe5f2c03dc9b18be3b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f0931a5c17005a0c4fc35bd1a001245effc3354b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45893","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.487","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: Fix & Optimize table creation from possibly unaligned memory\n\nSource blob may come from userspace and might be unaligned.\nTry to optize the copying process by avoiding unaligned memory accesses.\n\n- Added Fixes tag\n- Added \"Fix &\" to description as this doesn't just optimize but fixes\n        a potential unaligned memory access\n[jj: remove duplicate word \"convert\" in comment trigger checkpatch warning]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/226c3b10aab23f73b03c47e7773107de56ba3a4e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/47e351dfef60ab0e3285133556e1a9c7f646a969","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6fc367bfd4c8886e6b1742aabbd1c0bdc310db3a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e027999049c493fb728ead5a90db76942181a935","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45894","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.610","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Clear Present bit before tearing down PASID entry\n\nThe Intel VT-d Scalable Mode PASID table entry consists of 512 bits (64\nbytes). When tearing down an entry, the current implementation zeros the\nentire 64-byte structure immediately using multiple 64-bit writes.\n\nSince the IOMMU hardware may fetch these 64 bytes using multiple\ninternal transactions (e.g., four 128-bit bursts), updating or zeroing\nthe entire entry while it is active (P=1) risks a \"torn\" read. If a\nhardware fetch occurs simultaneously with the CPU zeroing the entry, the\nhardware could observe an inconsistent state, leading to unpredictable\nbehavior or spurious faults.\n\nFollow the \"Guidance to Software for Invalidations\" in the VT-d spec\n(Section 6.5.3.3) by implementing the recommended ownership handshake:\n\n1. Clear only the 'Present' (P) bit of the PASID entry.\n2. Use a dma_wmb() to ensure the cleared bit is visible to hardware\n   before proceeding.\n3. Execute the required invalidation sequence (PASID cache, IOTLB, and\n   Device-TLB flush) to ensure the hardware has released all cached\n   references.\n4. Only after the flushes are complete, zero out the remaining fields\n   of the PASID entry.\n\nAlso, add a dma_wmb() in pasid_set_present() to ensure that all other\nfields of the PASID entry are visible to the hardware before the Present\nbit is set."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/75ed00055c059dedc47b5daaaa2f8a7a019138ff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/821807c167b7b48a41b95b6607c6b9f97600f7d9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/949d71666e9dd19f21e7b4b53a88cd2c5b902858","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a84d30e8d2bacd21782a6481158b7c9c552f4868","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45895","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.733","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nquota: fix livelock between quotactl and freeze_super\n\nWhen a filesystem is frozen, quotactl_block() enters a retry loop\nwaiting for the filesystem to thaw. It acquires s_umount, checks the\nfreeze state, drops s_umount and uses sb_start_write() - sb_end_write()\npair to wait for the unfreeze.\n\nHowever, this retry loop can trigger a livelock issue, specifically on\nkernels with preemption disabled.\n\nThe mechanism is as follows:\n1. freeze_super() sets SB_FREEZE_WRITE and calls sb_wait_write().\n2. sb_wait_write() calls percpu_down_write(), which initiates\n   synchronize_rcu().\n3. Simultaneously, quotactl_block() spins in its retry loop, immediately\n   executing the sb_start_write() - sb_end_write() pair.\n4. Because the kernel is non-preemptible and the loop contains no\n   scheduling points, quotactl_block() never yields the CPU. This\n   prevents that CPU from reaching an RCU quiescent state.\n5. synchronize_rcu() in the freezer thread waits indefinitely for the\n   quotactl_block() CPU to report a quiescent state.\n6. quotactl_block() spins indefinitely waiting for the freezer to\n   advance, which it cannot do as it is blocked on the RCU sync.\n\nThis results in a hang of the freezer process and 100% CPU usage by the\nquota process.\n\nWhile this can occur intermittently on multi-core systems, it is\nreliably reproducing on a node with the following script, running both\nthe freezer and the quota toggle on the same CPU:\n\n  # mkfs.ext4 -O quota /dev/sda 2g && mkdir a_mount\n  # mount /dev/sda -o quota,usrquota,grpquota a_mount\n  # taskset -c 3 bash -c \"while true; do xfs_freeze -f a_mount; \\\n    xfs_freeze -u a_mount; done\" &\n  # taskset -c 3 bash -c \"while true; do quotaon a_mount; \\\n    quotaoff a_mount; done\" &\n\nAdding cond_resched() to the retry loop fixes the issue. It acts as an\nRCU quiescent state, allowing synchronize_rcu() in percpu_down_write()\nto complete."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/02bb1500f1479750e6557c8044f6a2d7e9d30c12","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/37ccd48cf35f3c8b9f2ea961a7b486b91eb71a82","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/414259caf81a397563fc9baca9c0ef856c4a97cf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/53b2314b26b6640a3657cc924de63a1a8f26ac4d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/77449e453dfc006ad738dec55374c4cbc056fd39","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45896","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.860","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: intel-dg: Fix accessing regions before setting nregions\n\nThe regions array is counted by nregions, but it's set only after\naccessing it:\n\n[] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15\n[] index 0 is out of range for type '<unknown> [*]'\n\nFix it by also fixing an undesired behavior: the loop silently ignores\nENOMEM and continues setting the other entries."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/721bd22bcf45a63ebd9bd0f478ef721b45cc5383","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/779c59274d03cc5c07237a2c845dfb71cff77705","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d58fca8513414b15387460b14a7a0a30405b9c9e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45897","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:03.977","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_counter: serialize reset with spinlock\n\nAdd a global static spinlock to serialize counter fetch+reset\noperations, preventing concurrent dump-and-reset from underrunning\nvalues.\n\nThe lock is taken before fetching the total so that two parallel\nresets cannot both read the same counter values and then both\nsubtract them.\n\nA global lock is used for simplicity since resets are infrequent.\nIf this becomes a bottleneck, it can be replaced with a per-net\nlock later."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0cdc6d5a26f2d1f7f15a43526841b679445c32e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/779c60a5190c42689534172f4b49e927c9959e4e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45898","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.080","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/iwcm: Fix workqueue list corruption by removing work_list\n\nThe commit e1168f0 (\"RDMA/iwcm: Simplify cm_event_handler()\")\nchanged the work submission logic to unconditionally call\nqueue_work() with the expectation that queue_work() would\nhave no effect if work was already pending. The problem is\nthat a free list of struct iwcm_work is used (for which\nstruct work_struct is embedded), so each call to queue_work()\nis basically unique and therefore does indeed queue the work.\n\nThis causes a problem in the work handler which walks the work_list\nuntil it's empty to process entries. This means that a single\nrun of the work handler could process item N+1 and release it\nback to the free list while the actual workqueue entry is still\nqueued. It could then get reused (INIT_WORK...) and lead to\nlist corruption in the workqueue logic.\n\nFix this by just removing the work_list. The workqueue already\ndoes this for us.\n\nThis fixes the following error that was observed when stress\ntesting with ucmatose on an Intel E830 in iWARP mode:\n\n[  151.465780] list_del corruption. next->prev should be ffff9f0915c69c08, but was ffff9f0a1116be08. (next=ffff9f0a15b11c08)\n[  151.466639] ------------[ cut here ]------------\n[  151.466986] kernel BUG at lib/list_debug.c:67!\n[  151.467349] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[  151.467753] CPU: 14 UID: 0 PID: 2306 Comm: kworker/u64:18 Not tainted 6.19.0-rc4+ #1 PREEMPT(voluntary)\n[  151.468466] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[  151.469192] Workqueue:  0x0 (iw_cm_wq)\n[  151.469478] RIP: 0010:__list_del_entry_valid_or_report+0xf0/0x100\n[  151.469942] Code: c7 58 5f 4c b2 e8 10 50 aa ff 0f 0b 48 89 ef e8 36 57 cb ff 48 8b 55 08 48 89 e9 48 89 de 48 c7 c7 a8 5f 4c b2 e8 f0 4f aa ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90\n[  151.471323] RSP: 0000:ffffb15644e7bd68 EFLAGS: 00010046\n[  151.471712] RAX: 000000000000006d RBX: ffff9f0915c69c08 RCX: 0000000000000027\n[  151.472243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff9f0a37d9c600\n[  151.472768] RBP: ffff9f0a15b11c08 R08: 0000000000000000 R09: c0000000ffff7fff\n[  151.473294] R10: 0000000000000001 R11: ffffb15644e7bba8 R12: ffff9f092339ee68\n[  151.473817] R13: ffff9f0900059c28 R14: ffff9f092339ee78 R15: 0000000000000000\n[  151.474344] FS:  0000000000000000(0000) GS:ffff9f0a847b5000(0000) knlGS:0000000000000000\n[  151.474934] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  151.475362] CR2: 0000559e233a9088 CR3: 000000020296b004 CR4: 0000000000770ef0\n[  151.475895] PKRU: 55555554\n[  151.476118] Call Trace:\n[  151.476331]  <TASK>\n[  151.476497]  move_linked_works+0x49/0xa0\n[  151.476792]  __pwq_activate_work.isra.46+0x2f/0xa0\n[  151.477151]  pwq_dec_nr_in_flight+0x1e0/0x2f0\n[  151.477479]  process_scheduled_works+0x1c8/0x410\n[  151.477823]  worker_thread+0x125/0x260\n[  151.478108]  ? __pfx_worker_thread+0x10/0x10\n[  151.478430]  kthread+0xfe/0x240\n[  151.478671]  ? __pfx_kthread+0x10/0x10\n[  151.478955]  ? __pfx_kthread+0x10/0x10\n[  151.479240]  ret_from_fork+0x208/0x270\n[  151.479523]  ? __pfx_kthread+0x10/0x10\n[  151.479806]  ret_from_fork_asm+0x1a/0x30\n[  151.480103]  </TASK>"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/38c5b49fffa1b760959af74f11806eeb3ef4706d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7874eeacfa42177565c01d5198726671acf7adf2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a6b9e793e74e372daa266fd0d58b751305877897","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eb715133e0ae12514bba4d2d5ce1dee774476056","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45899","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.227","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: drop extent cache when splitting extent fails\n\nWhen the split extent fails, we might leave some extents still being\nprocessed and return an error directly, which will result in stale\nextent entries remaining in the extent status tree. So drop all of the\nremaining potentially stale extents if the splitting fails."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/120c6bd7ca9d3e80a968b758cbb3fbd67570f132","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/31bf37cf53ede8145e2bc62da803d4506da92975","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/337506dc652383c80839edb8d8dcdd8ff2129b4f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6e54f8dfee359bbd58086c883ea8cffd5312999d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/79b592e8f1b435796cbc2722190368e3e8ffd7a1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/808f3191498f300174523c54cab101e18795ae4e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dc7c9b9d03a59a7fe483574531327e650a4b4adc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45900","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.360","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: caam - fix netdev memory leak in dpaa2_caam_probe\n\nWhen commit 0e1a4d427f58 (\"crypto: caam: Unembed net_dev structure in\ndpaa2\") converted embedded net_device to dynamically allocated pointers,\nit added cleanup in dpaa2_dpseci_disable() but missed adding cleanup in\ndpaa2_dpseci_free() for error paths.\n\nThis causes memory leaks when dpaa2_dpseci_dpio_setup() fails during probe\ndue to DPIO devices not being ready yet. The kernel's deferred probe\nmechanism handles the retry successfully, but the netdevs allocated during\nthe failed probe attempt are never freed, resulting in kmemleak reports\nshowing multiple leaked netdev-related allocations all traced back to\ndpaa2_caam_probe().\n\nFix this by preserving the CPU mask of allocated netdevs during setup and\nusing it for cleanup in dpaa2_dpseci_free(). This approach ensures that\nonly the CPUs that actually had netdevs allocated will be cleaned up,\navoiding potential issues with CPU hotplug scenarios."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/7d43252b3060b0ba4a192dce5dba85a3f39ffe39","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d5c6f254528caf78d5de7d9646dc21c81d351827","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7decb572b55d2af33e59e9858fcee5d9ae69175","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e144cce29851610ce9c6eda405ce21118779aa51","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45901","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.483","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: revert commit_mutex usage in reset path\n\nIt causes circular lock dependency between commit_mutex, nfnl_subsys_ipset\nand nlk_cb_mutex when nft reset, ipset list, and iptables-nft with '-m set'\nrule run at the same time.\n\nPrevious patches made it safe to run individual reset handlers concurrently\nso commit_mutex is no longer required to prevent this."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee3978b6a0dcd4215cb7cedcba705a12174786a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45902","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.583","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: bq256xx: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4b6fb0b6124f558131e502e3ffd03e6583b3ace6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/74b5a88318db97d51bb40f774736553c2acd1514","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8005843369723d9c8975b7c4202d1b85d6125302","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/81d3688c9a2158329391e08f2d0b8ba204216044","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83c27fdd696ac13d023ef7a0345301be93209c53","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8796910131a32ff29275052df768ef022929a394","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cb5c743936edcebc51880eeb6bf04979b5c9438b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45903","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.710","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix memory access flags in helper prototypes\n\nAfter commit 37cce22dbd51 (\"bpf: verifier: Refactor helper access type tracking\"),\nthe verifier started relying on the access type flags in helper\nfunction prototypes to perform memory access optimizations.\n\nCurrently, several helper functions utilizing ARG_PTR_TO_MEM lack the\ncorresponding MEM_RDONLY or MEM_WRITE flags. This omission causes the\nverifier to incorrectly assume that the buffer contents are unchanged\nacross the helper call. Consequently, the verifier may optimize away\nsubsequent reads based on this wrong assumption, leading to correctness\nissues.\n\nFor bpf_get_stack_proto_raw_tp, the original MEM_RDONLY was incorrect\nsince the helper writes to the buffer. Change it to ARG_PTR_TO_UNINIT_MEM\nwhich correctly indicates write access to potentially uninitialized memory.\n\nSimilar issues were recently addressed for specific helpers in commit\nac44dcc788b9 (\"bpf: Fix verifier assumptions of bpf_d_path's output buffer\")\nand commit 2eb7648558a7 (\"bpf: Specify access type of bpf_sysctl_get_name args\").\n\nFix these prototypes by adding the correct memory access flags."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/802eef5afb1865bc5536a5302c068ba2215a1f72","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/aa319592892068bd960c1a1c07bd621085b0c63d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fdfe75161f6e8c41a7d3023fbb815b537107b806","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45904","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.820","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling\n\nThe recent commit 1010b4c012b0 (\"powerpc/eeh: Make EEH driver device\nhotplug safe\") restructured the EEH driver to improve synchronization\nwith the PCI hotplug layer.\n\nHowever, it inadvertently moved pci_lock_rescan_remove() outside its\nintended scope in eeh_handle_normal_event(), leading to broken PCI\nerror reporting and improper EEH event triggering. Specifically,\neeh_handle_normal_event() acquired pci_lock_rescan_remove() before\ncalling eeh_pe_bus_get(), but eeh_pe_bus_get() itself attempts to\nacquire the same lock internally, causing nested locking and disrupting\nnormal EEH event handling paths.\n\nThis patch adds a boolean parameter do_lock to _eeh_pe_bus_get(),\nwith two public wrappers:\n    eeh_pe_bus_get() with locking enabled.\n    eeh_pe_bus_get_nolock() that skips locking.\n\nCallers that already hold pci_lock_rescan_remove() now use\neeh_pe_bus_get_nolock() to avoid recursive lock acquisition.\n\nAdditionally, pci_lock_rescan_remove() calls are restored to the correct\nposition—after eeh_pe_bus_get() and immediately before iterating affected\nPEs and devices. This ensures EEH-triggered PCI removes occur under proper\nbus rescan locking without recursive lock contention.\n\nThe eeh_pe_loc_get() function has been split into two functions:\n    eeh_pe_loc_get(struct eeh_pe *pe) which retrieves the loc for given PE.\n    eeh_pe_loc_get_bus(struct pci_bus *bus) which retrieves the location\n    code for given bus.\n\nThis resolves lockdep warnings such as:\n<snip>\n[   84.964298] [    T928] ============================================\n[   84.964304] [    T928] WARNING: possible recursive locking detected\n[   84.964311] [    T928] 6.18.0-rc3 #51 Not tainted\n[   84.964315] [    T928] --------------------------------------------\n[   84.964320] [    T928] eehd/928 is trying to acquire lock:\n[   84.964324] [    T928] c000000003b29d58 (pci_rescan_remove_lock){+.+.}-{3:3}, at: pci_lock_rescan_remove+0x28/0x40\n[   84.964342] [    T928]\n                       but task is already holding lock:\n[   84.964347] [    T928] c000000003b29d58 (pci_rescan_remove_lock){+.+.}-{3:3}, at: pci_lock_rescan_remove+0x28/0x40\n[   84.964357] [    T928]\n                       other info that might help us debug this:\n[   84.964363] [    T928]  Possible unsafe locking scenario:\n\n[   84.964367] [    T928]        CPU0\n[   84.964370] [    T928]        ----\n[   84.964373] [    T928]   lock(pci_rescan_remove_lock);\n[   84.964378] [    T928]   lock(pci_rescan_remove_lock);\n[   84.964383] [    T928]\n                       *** DEADLOCK ***\n\n[   84.964388] [    T928]  May be due to missing lock nesting notation\n\n[   84.964393] [    T928] 1 lock held by eehd/928:\n[   84.964397] [    T928]  #0: c000000003b29d58 (pci_rescan_remove_lock){+.+.}-{3:3}, at: pci_lock_rescan_remove+0x28/0x40\n[   84.964408] [    T928]\n                       stack backtrace:\n[   84.964414] [    T928] CPU: 2 UID: 0 PID: 928 Comm: eehd Not tainted 6.18.0-rc3 #51 VOLUNTARY\n[   84.964417] [    T928] Hardware name: IBM,9080-HEX POWER10 (architected) 0x800200 0xf000006 of:IBM,FW1060.00 (NH1060_022) hv:phyp pSeries\n[   84.964419] [    T928] Call Trace:\n[   84.964420] [    T928] [c0000011a7157990] [c000000001705de4] dump_stack_lvl+0xc8/0x130 (unreliable)\n[   84.964424] [    T928] [c0000011a71579d0] [c0000000002f66e0] print_deadlock_bug+0x430/0x440\n[   84.964428] [    T928] [c0000011a7157a70] [c0000000002fd0c0] __lock_acquire+0x1530/0x2d80\n[   84.964431] [    T928] [c0000011a7157ba0] [c0000000002fea54] lock_acquire+0x144/0x410\n[   84.964433] [    T928] [c0000011a7157cb0] [c0000011a7157cb0] __mutex_lock+0xf4/0x1050\n[   84.964436] [    T928] [c0000011a7157e00] [c000000000de21d8] pci_lock_rescan_remove+0x28/0x40\n[   84.964439] [    T928] [c0000011a7157e20] [c00000000004ed98] eeh_pe_bus_get+0x48/0xc0\n[   84.964442] [    T928] [c0000011a7157e50] [c00000\n---truncated---"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6e6561231c6cfc32c5631aeecc0928ff2b14265c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/788dd28fd49610d6047cbb15dbf1186afffdfbaf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/815a8d2feb5615ae7f0b5befd206af0b0160614c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/87a1f93986aa1500b85aeff16b0b71c29ea116ea","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/89810e2d80281d42f855fac813786758ee16e323","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b85ee287bfe52c6b2d9b41758b5e0d08679d5b39","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f49faa4a64f8ac0e38983e606075b25dfcfc9ad4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f8b16d5764ee1e78c1ef333017ad383ffe76fcdc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45905","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:04.993","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: fix ip_rt_bug race in icmp_route_lookup reverse path\n\nicmp_route_lookup() performs multiple route lookups to find a suitable\nroute for sending ICMP error messages, with special handling for XFRM\n(IPsec) policies.\n\nThe lookup sequence is:\n1. First, lookup output route for ICMP reply (dst = original src)\n2. Pass through xfrm_lookup() for policy check\n3. If blocked (-EPERM) or dst is not local, enter \"reverse path\"\n4. In reverse path, call xfrm_decode_session_reverse() to get fl4_dec\n   which reverses the original packet's flow (saddr<->daddr swapped)\n5. If fl4_dec.saddr is local (we are the original destination), use\n   __ip_route_output_key() for output route lookup\n6. If fl4_dec.saddr is NOT local (we are a forwarding node), use\n   ip_route_input() to simulate the reverse packet's input path\n7. Finally, pass rt2 through xfrm_lookup() with XFRM_LOOKUP_ICMP flag\n\nThe bug occurs in step 6: ip_route_input() is called with fl4_dec.daddr\n(original packet's source) as destination. If this address becomes local\nbetween the initial check and ip_route_input() call (e.g., due to\nconcurrent \"ip addr add\"), ip_route_input() returns a LOCAL route with\ndst.output set to ip_rt_bug.\n\nThis route is then used for ICMP output, causing dst_output() to call\nip_rt_bug(), triggering a WARN_ON:\n\n ------------[ cut here ]------------\n WARNING: net/ipv4/route.c:1275 at ip_rt_bug+0x21/0x30, CPU#1\n Call Trace:\n  <TASK>\n  ip_push_pending_frames+0x202/0x240\n  icmp_push_reply+0x30d/0x430\n  __icmp_send+0x1149/0x24f0\n  ip_options_compile+0xa2/0xd0\n  ip_rcv_finish_core+0x829/0x1950\n  ip_rcv+0x2d7/0x420\n  __netif_receive_skb_one_core+0x185/0x1f0\n  netif_receive_skb+0x90/0x450\n  tun_get_user+0x3413/0x3fb0\n  tun_chr_write_iter+0xe4/0x220\n  ...\n\nFix this by checking rt2->rt_type after ip_route_input(). If it's\nRTN_LOCAL, the route cannot be used for output, so treat it as an error.\n\nThe reproducer requires kernel modification to widen the race window,\nmaking it unsuitable as a selftest. It is available at:\n\n  https://gist.github.com/mrpre/eae853b72ac6a750f5d45d64ddac1e81"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1c9ef28f643cce34a6a6c36c8f4d6d60a60db7e1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2c1f59005da9dd4b07b26984fd719e36557dc57c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/423ce12d10b426709489d6b84fdaa6d2f31c5652","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/81b84de32bb27ae1ae2eb9acf0420e9d0d14bf00","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a95ec9144eeff1fc6fbcc21b677e322c6f1430b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b04061f89ffc6168e7ec3c71d0086ec3c3797228","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45906","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.127","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: pf1550: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1bdefeed904f1f17e1f73a4d8a035515f3a9fad8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/838767f5074700552d3f006d867caed65edc7328","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45907","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.233","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix deadlocks between devlink and netdev instance locks\n\nIn the mentioned \"Fixes\" commit, various work tasks triggering devlink\nhealth reporter recovery were switched to use netdev_trylock to protect\nagainst concurrent tear down of the channels being recovered. But this\nhad the side effect of introducing potential deadlocks because of\nincorrect lock ordering.\n\nThe correct lock order is described by the init flow:\nprobe_one -> mlx5_init_one (acquires devlink lock)\n-> mlx5_init_one_devl_locked -> mlx5_register_device\n-> mlx5_rescan_drivers_locked -...-> mlx5e_probe -> _mlx5e_probe\n-> register_netdev (acquires rtnl lock)\n-> register_netdevice (acquires netdev lock)\n=> devlink lock -> rtnl lock -> netdev lock.\n\nBut in the current recovery flow, the order is wrong:\nmlx5e_tx_err_cqe_work (acquires netdev lock)\n-> mlx5e_reporter_tx_err_cqe -> mlx5e_health_report\n-> devlink_health_report (acquires devlink lock => boom!)\n-> devlink_health_reporter_recover\n-> mlx5e_tx_reporter_recover -> mlx5e_tx_reporter_recover_from_ctx\n-> mlx5e_tx_reporter_err_cqe_recover\n\nThe same pattern exists in:\nmlx5e_reporter_rx_timeout\nmlx5e_reporter_tx_ptpsq_unhealthy\nmlx5e_reporter_tx_timeout\n\nFix these by moving the netdev_trylock calls from the work handlers\nlower in the call stack, in the respective recovery functions, where\nthey are actually necessary."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4329514c61abefe4961541b128c549b017bab5ad","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/63f9d5fb4d8040077df801ca3270e2f02d55e0d9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83ac0304a2d77519dae1e54c9713cbe1aedf19c9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45908","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.350","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Fix memory leak in amdxdna_ubuf_map\n\nThe amdxdna_ubuf_map() function allocates memory for sg and\ninternal sg table structures, but it fails to free them if subsequent\noperations (sg_alloc_table_from_pages or dma_map_sgtable) fail."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5a68d2c99c859e6e8e36fa4e32749abf6d1fb66a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/84dd57fb0359500092f1101409ca32091731490d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f9f4366d2ff93b07c2571561c776bd9a708078c3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45909","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.453","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nclk: mediatek: Drop __initconst from gates\n\nSince commit 8ceff24a754a (\"clk: mediatek: clk-gate: Refactor\nmtk_clk_register_gate to use mtk_gate struct\") the mtk_gate structs\nare no longer just used for initialization/registration, but also at\nruntime. So drop __initconst annotations."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1debd9ba7eb18af8fb63dc93517c6bbcab0e31ee","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/866d8ecc4e789f7d73d6cafd1b122d1b6032b3b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/871afb43e41ad4e8246438de495a939cd0f8113c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45910","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.563","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix race condition in QP timer handlers\n\nI encontered the following warning:\n WARNING: drivers/infiniband/sw/rxe/rxe_task.c:249 at rxe_sched_task+0x1c8/0x238 [rdma_rxe], CPU#0: swapper/0/0\n...\n  libsha1 [last unloaded: ip6_udp_tunnel]\n CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G         C          6.19.0-rc5-64k-v8+ #37 PREEMPT\n Tainted: [C]=CRAP\n Hardware name: Raspberry Pi 4 Model B Rev 1.2\n Call trace:\n  rxe_sched_task+0x1c8/0x238 [rdma_rxe] (P)\n  retransmit_timer+0x130/0x188 [rdma_rxe]\n  call_timer_fn+0x68/0x4d0\n  __run_timers+0x630/0x888\n...\n WARNING: drivers/infiniband/sw/rxe/rxe_task.c:38 at rxe_sched_task+0x1c0/0x238 [rdma_rxe], CPU#0: swapper/0/0\n...\n WARNING: drivers/infiniband/sw/rxe/rxe_task.c:111 at do_work+0x488/0x5c8 [rdma_rxe], CPU#3: kworker/u17:4/93400\n...\n refcount_t: underflow; use-after-free.\n WARNING: lib/refcount.c:28 at refcount_warn_saturate+0x138/0x1a0, CPU#3: kworker/u17:4/93400\n\nThe issue is caused by a race condition between retransmit_timer() and\nrxe_destroy_qp, leading to the Queue Pair's (QP) reference count dropping\nto zero during timer handler execution.\n\nIt seems this warning is harmless because rxe_qp_do_cleanup() will flush\nall pending timers and requests.\n\nExample of flow causing the issue:\n\nCPU0                                   CPU1\nretransmit_timer() {\n    spin_lock_irqsave\n                           rxe_destroy_qp()\n                            __rxe_cleanup()\n                              __rxe_put() // qp->ref_count decrease to 0\n                            rxe_qp_do_cleanup() {\n    if (qp->valid) {\n        rxe_sched_task() {\n            WARN_ON(rxe_read(task->qp) <= 0);\n        }\n    }\n    spin_unlock_irqrestore\n}\n                              spin_lock_irqsave\n                              qp->valid = 0\n                              spin_unlock_irqrestore\n                            }\n\nEnsure the QP's reference count is maintained and its validity is checked\nwithin the timer callbacks by adding calls to rxe_get(qp) and corresponding\nrxe_put(qp) after use."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3c2ae79fb19dfd67341c14f1e78a5f1744eacfe2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5ae9da022ee3c97e6469eabcddce9271501ddbad","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/756c93d6df7c3bc599f6590b8e5afead6a41de1c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/87bf646921430e303176edc4eb07c30160361b73","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da379ca16af3722f159860d91a99cb6976a7500f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45911","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.687","lastModified":"2026-05-27T14:48:31.480","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdns3: fix role switching during resume\n\nIf the role change while we are suspended, the cdns3 driver switches to the\nnew mode during resume. However, switching to host mode in this context\ncauses a NULL pointer dereference.\n\nThe host role's start() operation registers a xhci-hcd device, but its\nprobe is deferred while we are in the resume path. The host role's resume()\noperation assumes the xhci-hcd device is already probed, which is not the\ncase, leading to the dereference. Since the start() operation of the new\nrole is already called, the resume operation can be skipped.\n\nSo skip the resume operation for the new role if a role switch occurs\nduring resume. Once the resume sequence is complete, the xhci-hcd device\ncan be probed in case of host mode.\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000208\nMem abort info:\n...\nData abort info:\n...\n[0000000000000208] pgd=0000000000000000, p4d=0000000000000000\nInternal error: Oops: 0000000096000004 [#1]  SMP\nModules linked in:\nCPU: 0 UID: 0 PID: 146 Comm: sh Not tainted\n6.19.0-rc7-00013-g6e64f4aabfae-dirty #135 PREEMPT\nHardware name: Texas Instruments J7200 EVM (DT)\npstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : usb_hcd_is_primary_hcd+0x0/0x1c\nlr : cdns_host_resume+0x24/0x5c\n...\nCall trace:\n usb_hcd_is_primary_hcd+0x0/0x1c (P)\n cdns_resume+0x6c/0xbc\n cdns3_controller_resume.isra.0+0xe8/0x17c\n cdns3_plat_resume+0x18/0x24\n platform_pm_resume+0x2c/0x68\n dpm_run_callback+0x90/0x248\n device_resume+0x100/0x24c\n dpm_resume+0x190/0x2ec\n dpm_resume_end+0x18/0x34\n suspend_devices_and_enter+0x2b0/0xa44\n pm_suspend+0x16c/0x5fc\n state_store+0x80/0xec\n kobj_attr_store+0x18/0x2c\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x130/0x1dc\n vfs_write+0x240/0x370\n ksys_write+0x70/0x108\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x10c\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0x108\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\nCode: 52800003 f9407ca5 d63f00a0 17ffffe4 (f9410401)\n---[ end trace 0000000000000000 ]---"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/49c99dc247ebf7361db9dbdade3dcebfffaf2c22","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/56289298431ed76700b9aac27a3b1d929fe61b8d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/87e4b043b98a1d269be0b812f383881abee0ca45","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/94c742614899ff18a6b3e6f3cfbe7b9f36c865f3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d637f6ec149ffd2f8257bcc261561dc2e44dbb8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fc086c0ce3db0eefbbeb66a5b1e626296336e33a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ff02bd303d2d78051771db51119d66c0cf442f47","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45912","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:05.867","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: don't cache extent during splitting extent\n\nCaching extents during the splitting process is risky, as it may result\nin stale extents remaining in the status tree. Moreover, in most cases,\nthe corresponding extent block entries are likely already cached before\nthe split happens, making caching here not particularly useful.\n\nAssume we have an unwritten extent, and then DIO writes the first half.\n\n  [UUUUUUUUUUUUUUUU] on-disk extent        U: unwritten extent\n  [UUUUUUUUUUUUUUUU] extent status tree\n  |<-   ->| ----> dio write this range\n\nFirst, when ext4_split_extent_at() splits this extent, it truncates the\nexisting extent and then inserts a new one. During this process, this\nextent status entry may be shrunk, and calls to ext4_find_extent() and\next4_cache_extents() may occur, which could potentially insert the\ntruncated range as a hole into the extent status tree. After the split\nis completed, this hole is not replaced with the correct status.\n\n  [UUUUUUU|UUUUUUUU] on-disk extent        U: unwritten extent\n  [UUUUUUU|HHHHHHHH] extent status tree    H: hole\n\nThen, the outer calling functions will not correct this remaining hole\nextent either. Finally, if we perform a delayed buffer write on this\nlatter part, it will re-insert the delayed extent and cause an error in\nspace accounting.\n\nIn adition, if the unwritten extent cache is not shrunk during the\nsplitting, ext4_cache_extents() also conflicts with existing extents\nwhen caching extents. In the future, we will add checks when caching\nextents, which will trigger a warning. Therefore, Do not cache extents\nthat are being split."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4c2d9dac4d328244f9365b0a1fa27ec802821820","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5b1f4290453314e11cd8e15c7baa8a9b76c19b23","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/692103feca376ae4298c92aa8828015d20f1d87b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8302b5b4aacdbb378f7b1216bb2ee782b5142415","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8b4b19a2f96348d70bfa306ef7d4a13b0bcbea79","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/93b2ebbbcb2e63cfc21a1946dfe91d3aa7952036","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/96007fd3c106aea773c1afae2d6f64cceb6da208","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a2b95cdaf07785e2739199037bd9c0863ccc1be","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45913","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.020","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: mcast: always update mdb_n_entries for vlan contexts\n\nsyzbot triggered a warning[1] about the number of mdb entries in a context.\nIt turned out that there are multiple ways to trigger that warning today\n(some got added during the years), the root cause of the problem is that\nthe increase is done conditionally, and over the years these different\nconditions increased so there were new ways to trigger the warning, that is\nto do a decrease which wasn't paired with a previous increase.\n\nFor example one way to trigger it is with flush:\n $ ip l add br0 up type bridge vlan_filtering 1 mcast_snooping 1\n $ ip l add dumdum up master br0 type dummy\n $ bridge mdb add dev br0 port dumdum grp 239.0.0.1 permanent vid 1\n $ ip link set dev br0 down\n $ ip link set dev br0 type bridge mcast_vlan_snooping 1\n   ^^^^ this will enable snooping, but will not update mdb_n_entries\n        because in __br_multicast_enable_port_ctx() we check !netif_running\n $ bridge mdb flush dev br0\n   ^^^ this will trigger the warning because it will delete the pg which\n       we added above, which will try to decrease mdb_n_entries\n\nFix the problem by removing the conditional increase and always keep the\ncount up-to-date while the vlan exists. In order to do that we have to\nfirst initialize it on port-vlan context creation, and then always increase\nor decrease the value regardless of mcast options. To keep the current\nbehaviour we have to enforce the mdb limit only if the context is port's or\nif the port-vlan's mcast snooping is enabled.\n\n[1]\n ------------[ cut here ]------------\n n == 0\n WARNING: net/bridge/br_multicast.c:718 at br_multicast_port_ngroups_dec_one net/bridge/br_multicast.c:718 [inline], CPU#0: syz.4.4607/22043\n WARNING: net/bridge/br_multicast.c:718 at br_multicast_port_ngroups_dec net/bridge/br_multicast.c:771 [inline], CPU#0: syz.4.4607/22043\n WARNING: net/bridge/br_multicast.c:718 at br_multicast_del_pg+0x1bbe/0x1e20 net/bridge/br_multicast.c:825, CPU#0: syz.4.4607/22043\n Modules linked in:\n CPU: 0 UID: 0 PID: 22043 Comm: syz.4.4607 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026\n RIP: 0010:br_multicast_port_ngroups_dec_one net/bridge/br_multicast.c:718 [inline]\n RIP: 0010:br_multicast_port_ngroups_dec net/bridge/br_multicast.c:771 [inline]\n RIP: 0010:br_multicast_del_pg+0x1bbe/0x1e20 net/bridge/br_multicast.c:825\n Code: 41 5f 5d e9 04 7a 48 f7 e8 3f 73 5c f7 90 0f 0b 90 e9 cf fd ff ff e8 31 73 5c f7 90 0f 0b 90 e9 16 fd ff ff e8 23 73 5c f7 90 <0f> 0b 90 e9 60 fd ff ff e8 15 73 5c f7 eb 05 e8 0e 73 5c f7 48 8b\n RSP: 0018:ffffc9000c207220 EFLAGS: 00010293\n RAX: ffffffff8a68042d RBX: ffff88807c6f1800 RCX: ffff888066e90000\n RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff888066e90000 R09: 000000000000000c\n R10: 000000000000000c R11: 0000000000000000 R12: ffff8880303ef800\n R13: dffffc0000000000 R14: ffff888050eb11c4 R15: 1ffff1100a1d6238\n FS:  00007fa45921b6c0(0000) GS:ffff8881256f5000(0000) knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fa4591f9ff8 CR3: 0000000081df2000 CR4: 00000000003526f0\n Call Trace:\n  <TASK>\n  br_mdb_flush_pgs net/bridge/br_mdb.c:1525 [inline]\n  br_mdb_flush net/bridge/br_mdb.c:1544 [inline]\n  br_mdb_del_bulk+0x5e2/0xb20 net/bridge/br_mdb.c:1561\n  rtnl_mdb_del+0x48a/0x640 net/core/rtnetlink.c:-1\n  rtnetlink_rcv_msg+0x77e/0xbe0 net/core/rtnetlink.c:6967\n  netlink_rcv_skb+0x232/0x4b0 net/netlink/af_netlink.c:2550\n  netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]\n  netlink_unicast+0x80f/0x9b0 net/netlink/af_netlink.c:1344\n  netlink_sendmsg+0x813/0xb40 net/netlink/af_netlink.c:1894\n  sock_sendmsg_nosec net/socket.c:727 [inline]\n  __sock_sendmsg net/socket.c:742 [inline]\n  ____sys_sendmsg+0xa68/0xad0 net/socket.c:2592\n  ___sys_sendmsg+0x2a5/0x360 net/socke\n---truncated---"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/45525fdfd4cb612d7b414dd5cfa1f43892a7cd71","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/724a405ce0309676f1e993c173382b4c4a022beb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8b769e311a86bb9d15c5658ad283b86fc8f080a2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d0fdad1bdd21a358cc2c85da3681ae27b86ce6ce","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fae260fc84e1eae8f590c7907e53e8768df2d986","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45914","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.180","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"hwmon: (ibmpex) fix use-after-free in high/low store\"\n\nThis reverts commit 6946c726c3f4c36f0f049e6f97e88c510b15f65d.\n\nJean Delvare points out that the patch does not completely\nfix the reported problem, that it in fact introduces a\n(new) race condition, and that it may actually not be needed in\nthe first place.\n\nVarious AI reviews agree. Specific and relevant AI feedback:\n\n\"\nThis reordering sets the driver data to NULL before removing the sensor\nattributes in the loop below.\n\nibmpex_show_sensor() retrieves this driver data via dev_get_drvdata() but\ndoes not check if it is NULL before dereferencing it to access\ndata->sensors[].\n\nIf a userspace process reads a sensor file (like temp1_input) while this\ndelete function is running, could it race with the dev_set_drvdata(...,\nNULL) call here and crash in ibmpex_show_sensor()?\n\nWould it be safer to keep the original order where device_remove_file() is\ncalled before clearing the driver data? device_remove_file() should wait\nfor any active sysfs callbacks to complete, which might already prevent the\nuse-after-free this patch intends to fix.\n\"\n\nRevert the offending patch. If it can be shown that the originally reported\nalleged race condition does indeed exist, it can always be re-introduced\nwith a complete fix."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/05112ba67c824ab416cd54307c0b50aba9f0047a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/14a38784e09aebc21207dc32fffa05247fc3dd64","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/894d9c7aab68fd0c70c78b1d03c8fa589fb0f67d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8bde3e395a85017f12af2b0ba5c3684f5af9c006","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/914b47c9b824d3d74f31c764163edf93302100b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/efd68429f23fb4015b0ebc2392334059e06fad18","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f448acd86835a650f9ea83460b9ca347d3aafba5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45915","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.320","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfat: avoid parent link count underflow in rmdir\n\nCorrupted FAT images can leave a directory inode with an incorrect\ni_nlink (e.g. 2 even though subdirectories exist). rmdir then\nunconditionally calls drop_nlink(dir) and can drive i_nlink to 0,\ntriggering the WARN_ON in drop_nlink().\n\nAdd a sanity check in vfat_rmdir() and msdos_rmdir(): only drop the\nparent link count when it is at least 3, otherwise report a filesystem\nerror."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/17866f8a0822d414cb02e621cf003a7d04396ef8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7fe0de287e931e07cb96ecf1f449b2ebdb0e1115","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8cafcb881364af5ef3a8b9fed4db254054033d8a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/955c5d670b5ae07c78f4345e23a895638db96ce1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9894c79fd9466612d0514be157b5c30cd93aa645","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cd569b87378b9c33ae13c23d6bb9d205d66f7c4b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d0bb592fa9def2bace90ac8926c0a1d6fa8c1aa0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d3b7ffa90f613938128432c7b2f35b7aa4bdd86b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45916","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.463","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: sbs-battery: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle. Keep the old behavior of\njust printing a warning in case of any failures during the IRQ request\nand finishing the probe successfully."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/14d4dee5d8fb361bfff275832087254beab66d72","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2078830c32d1e49ac942c6f8c21f35c806ae5e94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8010b745b436c3e1ca5dd960aa29fa3e0f6d8841","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/82d3eb97a976c9d56bb92b241397610e57a9c629","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/861dda7a9074c0ff67788928165ae39d7f647491","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8d59cf3887fbabacef53bfba473e33e8a8d9d07b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca7dd71773e4e050b0fb98768b7eae60f8d1f38b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1f472b14ad56104ba228b8fbec60d5b21829913","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45917","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.587","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: do not keep dest_dst if dev is going down\n\nThere is race between the netdev notifier ip_vs_dst_event()\nand the code that caches dst with dev that is going down.\nAs the FIB can be notified for the closed device after our\nhandler finishes, it is possible valid route to be returned\nand cached resuling in a leaked dev reference until the dest\nis not removed.\n\nTo prevent new dest_dst to be attached to dest just after the\nhandler dropped the old one, add a netif_running() check\nto make sure the notifier handler is not currently running\nfor device that is closing."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/024eb0bd19f507e6e7f0c7a7e5506d66b5dc1d3e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/64af43033503458c46023e56d6ae7bb0f824b55f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8fde939b0206afc1d5846217a01a16b9bc8c7896","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bae53b3baf2ff2f45f9205c438818fc055601a54","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45918","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.690","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\novpn: tcp - don't deref NULL sk_socket member after tcp_close()\n\nWhen deleting a peer in case of keepalive expiration, the peer is\nremoved from the OpenVPN hashtable and is temporary inserted in a\n\"release list\" for further processing.\n\nThis happens in:\novpn_peer_keepalive_work()\n  unlock_ovpn(release_list)\n\nThis processing includes detaching from the socket being used to\ntalk to this peer, by restoring its original proto and socket\nops/callbacks.\n\nIn case of TCP it may happen that, while the peer is sitting in\nthe release list, userspace decides to close the socket.\nThis will result in a concurrent execution of:\n\ntcp_close(sk)\n  __tcp_close(sk)\n    sock_orphan(sk)\n      sk_set_socket(sk, NULL)\n\nThe last function call will set sk->sk_socket to NULL.\n\nWhen the releasing routine is resumed, ovpn_tcp_socket_detach()\nwill attempt to dereference sk->sk_socket to restore its original\nops member. This operation will crash due to sk->sk_socket being NULL.\n\nFix this race condition by testing-and-accessing\nsk->sk_socket atomically under sk->sk_callback_lock."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/94560267d6c41b1ff3fafbab726e3f8a55a6af34","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b9142cf4e066c825ec68752a7dcaceda700bbe26","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f998b2c4bec487063a586695159f9a1856e81c56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45919","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.790","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nsched/rt: Skip currently executing CPU in rto_next_cpu()\n\nCPU0 becomes overloaded when hosting a CPU-bound RT task, a non-CPU-bound\nRT task, and a CFS task stuck in kernel space. When other CPUs switch from\nRT to non-RT tasks, RT load balancing (LB) is triggered; with\nHAVE_RT_PUSH_IPI enabled, they send IPIs to CPU0 to drive the execution\nof rto_push_irq_work_func. During push_rt_task on CPU0,\nif next_task->prio < rq->donor->prio, resched_curr() sets NEED_RESCHED\nand after the push operation completes, CPU0 calls rto_next_cpu().\nSince only CPU0 is overloaded in this scenario, rto_next_cpu() should\nideally return -1 (no further IPI needed).\n\nHowever, multiple CPUs invoking tell_cpu_to_push() during LB increments\nrd->rto_loop_next. Even when rd->rto_cpu is set to -1, the mismatch between\nrd->rto_loop and rd->rto_loop_next forces rto_next_cpu() to restart its\nsearch from -1. With CPU0 remaining overloaded (satisfying rt_nr_migratory\n&& rt_nr_total > 1), it gets reselected, causing CPU0 to queue irq_work to\nitself and send self-IPIs repeatedly. As long as CPU0 stays overloaded and\nother CPUs run pull_rt_tasks(), it falls into an infinite self-IPI loop,\nwhich triggers a CPU hardlockup due to continuous self-interrupts.\n\nThe trigging scenario is as follows:\n\n         cpu0                      cpu1                    cpu2\n                                pull_rt_task\n                              tell_cpu_to_push\n                 <------------irq_work_queue_on\nrto_push_irq_work_func\n       push_rt_task\n    resched_curr(rq)                                   pull_rt_task\n    rto_next_cpu                                     tell_cpu_to_push\n                      <-------------------------- atomic_inc(rto_loop_next)\nrd->rto_loop != next\n     rto_next_cpu\n   irq_work_queue_on\nrto_push_irq_work_func\n\nFix redundant self-IPI by filtering the initiating CPU in rto_next_cpu().\nThis solution has been verified to effectively eliminate spurious self-IPIs\nand prevent CPU hardlockup scenarios."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/16ca9f3117e9a294646c897daf08a5ab546c711b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3b3c672a66db3de3b40f8a7057864bc1f874ede3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/52aeb1e07ec223caf212f036817976c98d2aa250","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8ad5577b2d4acfd83f03d97a0aece2d18aac5f07","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/94894c9c477e53bcea052e075c53f89df3d2a33e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9f25edc5a20cb52a5abbf25f0724bb4732b81801","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a6a73403733e86748421f2eeaf028c85683ef896","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d57d0746276a88ea43a2cc62b849fd8a95e32e41","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45920","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:06.930","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix dirtyclusters double decrement on fs shutdown\n\nfstests test generic/388 occasionally reproduces a warning in\next4_put_super() associated with the dirty clusters count:\n\n  WARNING: CPU: 7 PID: 76064 at fs/ext4/super.c:1324 ext4_put_super+0x48c/0x590 [ext4]\n\nTracing the failure shows that the warning fires due to an\ns_dirtyclusters_counter value of -1. IOW, this appears to be a\nspurious decrement as opposed to some sort of leak. Further tracing\nof the dirty cluster count deltas and an LLM scan of the resulting\noutput identified the cause as a double decrement in the error path\nbetween ext4_mb_mark_diskspace_used() and the caller\next4_mb_new_blocks().\n\nFirst, note that generic/388 is a shutdown vs. fsstress test and so\nproduces a random set of operations and shutdown injections. In the\nproblematic case, the shutdown triggers an error return from the\next4_handle_dirty_metadata() call(s) made from\next4_mb_mark_context(). The changed value is non-zero at this point,\nso ext4_mb_mark_diskspace_used() does not exit after the error\nbubbles up from ext4_mb_mark_context(). Instead, the former\ndecrements both cluster counters and returns the error up to\next4_mb_new_blocks(). The latter falls into the !ar->len out path\nwhich decrements the dirty clusters counter a second time, creating\nthe inconsistency.\n\nTo avoid this problem and simplify ownership of the cluster\nreservation in this codepath, lift the counter reduction to a single\nplace in the caller. This makes it more clear that\next4_mb_new_blocks() is responsible for acquiring cluster\nreservation (via ext4_claim_free_clusters()) in the !delalloc case\nas well as releasing it, regardless of whether it ends up consumed\nor returned due to failure."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3924aea2c33df3864929c1acd178bfc29d8f005f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/523d5a4df3c649fa305c89efb552ec62a1ce9d3d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/55576fa14771d33994c29a9ae960e07bb3f56c20","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/61e372122b6d95aec940fdaea0a16f988f359897","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/81982a11406c5da6c6e2b188028e7056e16b7128","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/94a8cea54cd935c54fa2fba70354757c0fc245e3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca408af08544d96769c93a3d81a7f63f61129e95","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbc4e10619ed87a50e637b96f2e574df36a7a769","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45921","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:07.070","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()\n\nThe function mtd_parser_tplink_safeloader_parse() allocates buf via\nmtd_parser_tplink_safeloader_read_table(). If the allocation for\nparts[idx].name fails inside the loop, the code jumps to the err_free\nlabel without freeing buf, leading to a memory leak.\n\nFix this by freeing the temporary buffer buf in the err_free label.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0f5e62ea5c43146eacdc6861cb1022ffae1b79bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/971e9c53aed82f17a9c6a65daa4e21cc15eba5b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/980ce2b02dd06a4fdf5fee38b2e14becf9cf7b8b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e97f5fac8ce9a6b9ec724c97d86b0985e915fdca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec121ad626c319085f6d40a52cd04e99b4554926","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45922","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:07.180","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler\n\nThe UVERBS_HANDLER(MLX5_IB_METHOD_GET_DATA_DIRECT_SYSFS_PATH) function\nallocates memory for the device path using kobject_get_path(). If the\nlength of the device path exceeds the output buffer length, the function\nreturns -ENOSPC but does not free the allocated memory, resulting in a\nmemory leak.\n\nAdd a kfree() call to the error path to ensure the allocated memory is\nproperly freed.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9b9d253908478f504297ac283c514e5953ddafa6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b3a10eca24fcfe913c0875e620f19596001bd6dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee998cdbff6680891b0efd9d6ce53a388e5342c3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45923","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:07.283","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: catc: enable basic endpoint checking\n\ncatc_probe() fills three URBs with hardcoded endpoint pipes without\nverifying the endpoint descriptors:\n\n  - usb_sndbulkpipe(usbdev, 1) and usb_rcvbulkpipe(usbdev, 1) for TX/RX\n  - usb_rcvintpipe(usbdev, 2) for interrupt status\n\nA malformed USB device can present these endpoints with transfer types\nthat differ from what the driver assumes.\n\nAdd a catc_usb_ep enum for endpoint numbers, replacing magic constants\nthroughout. Add usb_check_bulk_endpoints() and usb_check_int_endpoints()\ncalls after usb_set_interface() to verify endpoint types before use,\nrejecting devices with mismatched descriptors at probe time.\n\nSimilar to\n- commit 90b7f2961798 (\"net: usb: rtl8150: enable basic endpoint checking\")\nwhich fixed the issue in rtl8150."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/163d04897e57633c5d2e69734e4e4b22bb63f50d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1a42cfced8900d33d032c7ec338484855b61b8cc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/36c28b028efba0f42218d41fed12c47ce217c1f1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9e7021d2aeae57c323a6f722ed7915686cdcc123","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a488001a8197da4f9c413eec8f6acbff71c60145","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ac7739b78ded519e1d9919a814da3b34120bec8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eade522d3e6ac3f3bfb51bfa5b5b4b32bd0b846f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45924","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:07.413","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: call ksmbd_vfs_kern_path_end_removing() on some error paths\n\nThere are two places where ksmbd_vfs_kern_path_end_removing() needs to be\ncalled in order to balance what the corresponding successful call to\nksmbd_vfs_kern_path_start_removing() has done, i.e. drop inode locks and\nput the taken references.  Otherwise there might be potential deadlocks\nand unbalanced locks which are caught like:\n\nBUG: workqueue leaked lock or atomic: kworker/5:21/0x00000000/7596\n     last function: handle_ksmbd_work\n2 locks held by kworker/5:21/7596:\n #0: ffff8881051ae448 (sb_writers#3){.+.+}-{0:0}, at: ksmbd_vfs_kern_path_locked+0x142/0x660\n #1: ffff888130e966c0 (&type->i_mutex_dir_key#3/1){+.+.}-{4:4}, at: ksmbd_vfs_kern_path_locked+0x17d/0x660\nCPU: 5 PID: 7596 Comm: kworker/5:21 Not tainted 6.1.162-00456-gc29b353f383b #138\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.17.0-debian-1.17.0-1 04/01/2014\nWorkqueue: ksmbd-io handle_ksmbd_work\nCall Trace:\n <TASK>\n dump_stack_lvl+0x44/0x5b\n process_one_work.cold+0x57/0x5c\n worker_thread+0x82/0x600\n kthread+0x153/0x190\n ret_from_fork+0x22/0x30\n </TASK>\n\nFound by Linux Verification Center (linuxtesting.org)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0c578e8065c4b08d5635a4cbc0f6321df9d20f79","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/34d6691933682f0516259a31b39d2cebcedec0a5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c38600feb81c670edb82e49d201d3d2d00cd4c3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8e3a3192ef78d8302916408d62813b1fddfc8972","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a09dc10d1353f0e92c21eae2a79af1c2b1ddcde8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cf29329a13df79c198b45dfc92577638d30b56fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f221baa80e5959a0c08a7e34abbf2a4d3cf0e1c2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45925","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.343","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nthermal/of: Fix reference leak in thermal_of_cm_lookup()\n\nIn thermal_of_cm_lookup(), tr_np is obtained via of_parse_phandle(), but\nnever released.\n\nUse the __free(device_node) cleanup attribute to automatically release\nthe node and fix the leak.\n\n[ rjw: Changelog edits ]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/025796ccd7f9f2e013e12319de26b6c021a80c1f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8344d5da9df74fdbef676214d0c482fc822a01ca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8af710156c53cdb392d529497ef2b3a10a1f9370","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a1fe789a96fe47733c133134fd264cb7ca832395","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45926","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.473","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrust: pwm: Fix potential memory leak on init error\n\nWhen initializing a PWM chip using pwmchip_alloc(), the allocated device\nowns an initial reference that must be released on all error paths.\n\nIf __pinned_init() were to fail, the allocated pwm_chip would currently\nleak because the error path returns without calling pwmchip_put()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/a2633dc243c35754a0c2270131d8a199c987c9bf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/baa8b7097d9cc68ff85819cf683972a58c2ce32b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45927","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.583","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Require frozen map for calculating map hash\n\nCurrently, bpf_map_get_info_by_fd calculates and caches the hash of the\nmap regardless of the map's frozen state.\n\nThis leads to a TOCTOU bug where userspace can call\nBPF_OBJ_GET_INFO_BY_FD to cache the hash and then modify the map\ncontents before freezing.\n\nTherefore, a trusted loader can be tricked into verifying the stale hash\nwhile loading the modified contents.\n\nFix this by returning -EPERM if the map is not frozen when the hash is\nrequested. This ensures the hash is only generated for the final,\nimmutable state of the map."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/7752d36343862323bbeea4ce3adf0ec2ed86e122","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a2c86aa621c22f2a7e26c654f936d65cfff0aa91","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f415e114b58fe02c41191e47f24bdabb438daf72","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45928","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.707","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: chips-media: wave5: Fix memory leak on codec_info allocation failure\n\nIn wave5_vpu_open_enc() and wave5_vpu_open_dec(), a vpu instance is\nallocated via kzalloc(). If the subsequent allocation for inst->codec_info\nfails, the functions return -ENOMEM without freeing the previously\nallocated instance, causing a memory leak.\n\nFix this by calling kfree() on the instance in this error path to ensure\nit is properly released."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1de71556cbd6e1d0d26fb86b9b3bb8caa0df8495","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/32e9e45cf7e3422d21fa64535588d3572faf71c3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/52defdd4034db1a34bb48006f889d66a3629224b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a519e21e32398459ba357e67b541402f7295ee1b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45929","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.833","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\novpn: fix possible use-after-free in ovpn_net_xmit\n\nWhen building the skb_list in ovpn_net_xmit, skb_share_check will free\nthe original skb if it is shared. The current implementation continues\nto use the stale skb pointer for subsequent operations:\n- peer lookup,\n- skb_dst_drop (even though all segments produced by skb_gso_segment\n  will have a dst attached),\n- ovpn_peer_stats_increment_tx.\n\nFix this by moving the peer lookup and skb_dst_drop before segmentation\nso that the original skb is still valid when used. Return early if all\nsegments fail skb_share_check and the list ends up empty.\nAlso switch ovpn_peer_stats_increment_tx to use skb_list.next; the next\npatch fixes the stats logic."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3e4fbcb4e078915367ba5576cd70d76dbc970f95","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/442915c96a9bff1c7080e2aedabb1c03faa28d81","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a5ec7baa44ea3a1d6aa0ca31c0ad82edf9affe41","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45930","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:08.947","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mctp: ensure our nlmsg responses are initialised\n\nSyed Faraz Abrar (@farazsth98) from Zellic, and Pumpkin (@u1f383) from\nDEVCORE Research Team working with Trend Micro Zero Day Initiative\nreport that a RTM_GETNEIGH will return uninitalised data in the pad\nbytes of the ndmsg data.\n\nEnsure we're initialising the netlink data to zero, in the link, addr\nand neigh response messages."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6fb6a97c86abb8592158088afaea0eb464cf9de1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a6a9bc544b675d8b5180f2718ec985ad267b5cbf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45931","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.053","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Hold mm structure across iommu_sva_unbind_device()\n\nSome tests trigger a crash in iommu_sva_unbind_device() due to\naccessing iommu_mm after the associated mm structure has been\nfreed.\n\nFix this by taking an explicit reference to the mm structure\nafter successfully binding the device, and releasing it only\nafter the device is unbound. This ensures the mm remains valid\nfor the entire SVA bind/unbind lifetime."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/a9162439ad792afcddc04718408ec1380b7a5f63","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f31ccf6278132a35a652fe5eeac3941e1e912398","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f6b4c1d98a7b8040d4d02e89425b3942016a2c2c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45932","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.173","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix tcx/netkit detach permissions when prog fd isn't given\n\nThis commit fixes a security issue where BPF_PROG_DETACH on tcx or\nnetkit devices could be executed by any user when no program fd was\nprovided, bypassing permission checks. The fix adds a capability\ncheck for CAP_NET_ADMIN or CAP_SYS_ADMIN in this case."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3f04cc1e5374da4c5e791ae010a06cfea7bacbe6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4e0772cded109c238411f2fac36ac39302758b81","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ae23bc81ddf7c17b663c4ed1b21e35527b0a7131","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45933","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.297","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Preserve id of register in sync_linked_regs()\n\nsync_linked_regs() copies the id of known_reg to reg when propagating\nbounds of known_reg to reg using the off of known_reg, but when\nknown_reg was linked to reg like:\n\nknown_reg = reg         ; both known_reg and reg get same id\nknown_reg += 4          ; known_reg gets off = 4, and its id gets BPF_ADD_CONST\n\nnow when a call to sync_linked_regs() happens, let's say with the following:\n\nif known_reg >= 10 goto pc+2\n\nknown_reg's new bounds are propagated to reg but now reg gets\nBPF_ADD_CONST from the copy.\n\nThis means if another link to reg is created like:\n\nanother_reg = reg       ; another_reg should get the id of reg but\n                          assign_scalar_id_before_mov() sees\n                          BPF_ADD_CONST on reg and assigns a new id to it.\n\nAs reg has a new id now, known_reg's link to reg is broken. If we find\nnew bounds for known_reg, they will not be propagated to reg.\n\nThis can be seen in the selftest added in the next commit:\n\n0: (85) call bpf_get_prandom_u32#7    ; R0=scalar()\n1: (57) r0 &= 255                     ; R0=scalar(smin=smin32=0,smax=umax=smax32=umax32=255,var_off=(0x0; 0xff))\n2: (bf) r1 = r0                       ; R0=scalar(id=1,smin=smin32=0,smax=umax=smax32=umax32=255,var_off=(0x0; 0xff)) R1=scalar(id=1,smin=smin32=0,smax=umax=smax32=umax32=255,var_off=(0x0; 0xff))\n3: (07) r1 += 4                       ; R1=scalar(id=1+4,smin=umin=smin32=umin32=4,smax=umax=smax32=umax32=259,var_off=(0x0; 0x1ff))\n4: (a5) if r1 < 0xa goto pc+4         ; R1=scalar(id=1+4,smin=umin=smin32=umin32=10,smax=umax=smax32=umax32=259,var_off=(0x0; 0x1ff))\n5: (bf) r2 = r0                       ; R0=scalar(id=2,smin=umin=smin32=umin32=6,smax=umax=smax32=umax32=255) R2=scalar(id=2,smin=umin=smin32=umin32=6,smax=umax=smax32=umax32=255)\n6: (a5) if r1 < 0xe goto pc+2         ; R1=scalar(id=1+4,smin=umin=smin32=umin32=14,smax=umax=smax32=umax32=259,var_off=(0x0; 0x1ff))\n7: (35) if r0 >= 0xa goto pc+1        ; R0=scalar(id=2,smin=umin=smin32=umin32=6,smax=umax=smax32=umax32=9,var_off=(0x0; 0xf))\n8: (37) r0 /= 0\ndiv by zero\n\nWhen 4 is verified, r1's bounds are propagated to r0 but r0 also gets\nBPF_ADD_CONST (bug).\nWhen 5 is verified, r0 gets a new id (2) and its link with r1 is broken.\n\nAfter 6 we know r1 has bounds [14, 259] and therefore r0 should have\nbounds [10, 255], therefore the branch at 7 is always taken. But because\nr0's id was changed to 2, r1's new bounds are not propagated to r0.\nThe verifier still thinks r0 has bounds [6, 255] before 7 and execution\ncan reach div by zero.\n\nFix this by preserving id in sync_linked_regs() like off and subreg_def."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/58059335e46537de682db84984f7716c813208c4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65d114b5270b62aefb820ecd6c3b7caeea8f895d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/92a8cb1806adefb263cf096eab6705705cf7eee1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/af9e89d8dd39530c8bd14c33ddf6b502df1071b6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45934","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.480","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation\n\nI have been observing a number of systems aborting at\ninsert_dev_extents() in btrfs_create_pending_block_groups(). The\nfollowing is a sample stack trace of such an abort coming from forced\nchunk allocation (typically behind CONFIG_BTRFS_EXPERIMENTAL) but this\ncan theoretically happen to any DUP chunk allocation.\n\n  [81.801] ------------[ cut here ]------------\n  [81.801] BTRFS: Transaction aborted (error -17)\n  [81.801] WARNING: fs/btrfs/block-group.c:2876 at btrfs_create_pending_block_groups+0x721/0x770 [btrfs], CPU#1: bash/319\n  [81.802] Modules linked in: virtio_net btrfs xor zstd_compress raid6_pq null_blk\n  [81.803] CPU: 1 UID: 0 PID: 319 Comm: bash Kdump: loaded Not tainted 6.19.0-rc6+ #319 NONE\n  [81.803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Arch Linux 1.17.0-2-2 04/01/2014\n  [81.804] RIP: 0010:btrfs_create_pending_block_groups+0x723/0x770 [btrfs]\n  [81.806] RSP: 0018:ffffa36241a6bce8 EFLAGS: 00010282\n  [81.806] RAX: 000000000000000d RBX: ffff8e699921e400 RCX: 0000000000000000\n  [81.807] RDX: 0000000002040001 RSI: 00000000ffffffef RDI: ffffffffc0608bf0\n  [81.807] RBP: 00000000ffffffef R08: ffff8e69830f6000 R09: 0000000000000007\n  [81.808] R10: ffff8e699921e5e8 R11: 0000000000000000 R12: ffff8e6999228000\n  [81.808] R13: ffff8e6984d82000 R14: ffff8e69966a69c0 R15: ffff8e69aa47b000\n  [81.809] FS:  00007fec6bdd9740(0000) GS:ffff8e6b1b379000(0000) knlGS:0000000000000000\n  [81.809] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  [81.810] CR2: 00005604833670f0 CR3: 0000000116679000 CR4: 00000000000006f0\n  [81.810] Call Trace:\n  [81.810]  <TASK>\n  [81.810]  __btrfs_end_transaction+0x3e/0x2b0 [btrfs]\n  [81.811]  btrfs_force_chunk_alloc_store+0xcd/0x140 [btrfs]\n  [81.811]  kernfs_fop_write_iter+0x15f/0x240\n  [81.812]  vfs_write+0x264/0x500\n  [81.812]  ksys_write+0x6c/0xe0\n  [81.812]  do_syscall_64+0x66/0x770\n  [81.812]  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n  [81.813] RIP: 0033:0x7fec6be66197\n  [81.814] RSP: 002b:00007fffb159dd30 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n  [81.815] RAX: ffffffffffffffda RBX: 00007fec6bdd9740 RCX: 00007fec6be66197\n  [81.815] RDX: 0000000000000002 RSI: 0000560483374f80 RDI: 0000000000000001\n  [81.816] RBP: 0000560483374f80 R08: 0000000000000000 R09: 0000000000000000\n  [81.816] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002\n  [81.817] R13: 00007fec6bfb85c0 R14: 00007fec6bfb5ee0 R15: 00005604833729c0\n  [81.817]  </TASK>\n  [81.817] irq event stamp: 20039\n  [81.818] hardirqs last  enabled at (20047): [<ffffffff99a68302>] __up_console_sem+0x52/0x60\n  [81.818] hardirqs last disabled at (20056): [<ffffffff99a682e7>] __up_console_sem+0x37/0x60\n  [81.819] softirqs last  enabled at (19470): [<ffffffff999d2b46>] __irq_exit_rcu+0x96/0xc0\n  [81.819] softirqs last disabled at (19463): [<ffffffff999d2b46>] __irq_exit_rcu+0x96/0xc0\n  [81.820] ---[ end trace 0000000000000000 ]---\n  [81.820] BTRFS: error (device dm-7 state A) in btrfs_create_pending_block_groups:2876: errno=-17 Object already exists\n\nInspecting these aborts with drgn, I observed a pattern of overlapping\nchunk_maps. Note how stripe 1 of the first chunk overlaps in physical\naddress with stripe 0 of the second chunk.\n\nPhysical Start     Physical End       Length       Logical            Type                 Stripe\n----------------------------------------------------------------------------------------------------\n0x0000000102500000 0x0000000142500000 1.0G         0x0000000641d00000 META|DUP             0/2\n0x0000000142500000 0x0000000182500000 1.0G         0x0000000641d00000 META|DUP             1/2\n0x0000000142500000 0x0000000182500000 1.0G         0x0000000601d00000 META|DUP             0/2\n0x0000000182500000 0x00000001c2500000 1.0G         0x0000000601d00000 META|DUP             1/2\n\nNow how could this possibly happen? All chunk allocation is\n---truncated---"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/156cac365e27a82b64ae510c5f463fd81f0265b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7d4eadee7042d27fcea659fcdd738f463a7d2e70","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b14c5e04bd0f722ed631845599d52d03fcae1bc1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45935","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.613","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix slab-out-of-bounds read in DeleteIndexEntryRoot\n\nIn the 'DeleteIndexEntryRoot' case of the 'do_action' function, the\nentry size ('esize') is retrieved from the log record without adequate\nbounds checking.\n\nSpecifically, the code calculates the end of the entry ('e2') using:\n    e2 = Add2Ptr(e1, esize);\n\nIt then calculates the size for memmove using 'PtrOffset(e2, ...)',\nwhich subtracts the end pointer from the buffer limit. If 'esize' is\nmaliciously large, 'e2' exceeds the used buffer size. This results in\na negative offset which, when cast to size_t for memmove, interprets\nas a massive unsigned integer, leading to a heap buffer overflow.\n\nThis commit adds a check to ensure that the entry size ('esize') strictly\nfits within the remaining used space of the index header before performing\nmemory operations."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/36c03f7f177b34d51f1cf1d2304b1074607bf4b0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/78942172d5bff4d4afed8674abc09cc560ce44a0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a584b9d1059b29e97e17c919274e9adfb846f2a0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b271c9cb85927210b1b799e55ee7f702d12b4336","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b2bc7c44ed1779fc9eaab9a186db0f0d01439622","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c065541b71b79874c83d418a9acd18ad5826339b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f3b437a4c3e022a1449658ae9f3dd34859894513","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45936","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.740","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: goldfish: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0b29ffe4090a3fc7a7649de20e1eb1e53adddac7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/33751e28842bf5aee5ef7b2b8d5e456a069095cb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4350505e82b4f972ddb788e1c712c557c38859d0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/589d4fe56713c6344cd9f8939f9c7621c85f0966","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/77ea437faa4c06362e3ecfd2d7264eaa7ac1e82c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8c89aade8335e26a6a7dcda18992d15f51943927","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b2ce982e2e0c888dc55c888ad0e20ea04daf2e6b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bad8b61eb5059acd88349680e47839342dc89e94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45937","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.867","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: inside-secure/eip93 - fix kernel panic in driver detach\n\nDuring driver detach, the same hash algorithm is unregistered multiple\ntimes due to a wrong iterator."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/7530c3595d1e23bc5938cbd44b7e8f33457fc71f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/91c6f25075a8f8fbd7316d73e1edf281a94f78df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b6e32ba6d32503440a3e3e16c8d0521cbb7e0c5d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45938","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:09.977","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: pm8916_lbc: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nFix this racy use-after-free by making sure the IRQ is requested _after_\nthe registration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/08e674e9862a2db46fb234eb7c5442455ece0131","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b7508129978ae1e2ed9b0410396abc05def9c4eb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7d31fc99d248d5f47588f50dce5c7599c991c6a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbe579e620ef0f53db490ec79a8566e4ea8918ac","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45939","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.083","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ngpib: Fix memory leak in ni_usb_init()\n\nIn ni_usb_init(), if ni_usb_setup_init() fails, the function returns\n-EFAULT without freeing the allocated writes buffer, leading to a\nmemory leak.\n\nAdditionally, ni_usb_setup_init() returns 0 on failure, which causes\nni_usb_init() to return -EFAULT, an inappropriate error code for this\nsituation.\n\nFix the leak by freeing writes in the error path. Modify\nni_usb_setup_init() to return -EINVAL on failure and propagate this\nerror code in ni_usb_init()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9c97fcfb7a62dea893104a046d544da8ac23370b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b89921eed8cf2d97250bac4be38dbcfbf048b586","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c899d4b62c0757a280831e89c1f3801b597e8f38","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45940","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.193","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix oops when split header is enabled\n\nFor GMAC4, when split header is enabled, in some rare cases, the\nhardware does not fill buf2 of the first descriptor with payload.\nThus we cannot assume buf2 is always fully filled if it is not\nthe last descriptor. Otherwise, the length of buf2 of the second\ndescriptor will be calculated wrong and cause an oops:\n\nUnable to handle kernel paging request at virtual address ffff00019246bfc0\n...\nx2 : 0000000000000040 x1 : ffff00019246bfc0 x0 : ffff00009246c000\nCall trace:\n dcache_inval_poc+0x28/0x58 (P)\n dma_direct_sync_single_for_cpu+0x38/0x6c\n __dma_sync_single_for_cpu+0x34/0x6c\n stmmac_napi_poll_rx+0x8f0/0xb60\n __napi_poll.constprop.0+0x30/0x144\n net_rx_action+0x160/0x274\n handle_softirqs+0x1b8/0x1fc\n...\n\nTo fix this, the PL bit-field in RDES3 register is used for all\ndescriptors, whether it is the last descriptor or not."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/36f81cb7d82e9614a7058da6abdf2e3a03993df1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b1f23df09e7dbf4c86b6908dff7efb8cb2b7d609","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/babab1b42ed68877ef669a08384becf281ad2582","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45941","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.300","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure\n\nget_burstcount() can return -EBUSY on timeout. When this happens, the\nfunction returns directly without releasing the locality that was\nacquired at the beginning of tpm_tis_i2c_send().\n\nUse goto out_err to ensure proper cleanup when get_burstcount() fails."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1a22048c1117cdfac185ba450aba67ed6b65dc87","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1bb8f8826d0748b4b92a98fb6b6dfe52081739f5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2f7a665e1323359d99c74301d1e180f5e2c40181","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8f124c5582d443ac9fb690db26d08cab5d6ba76e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/948966e546f29af04391d98b8e378e4a7670c1c1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a61b8412e3eb8b71646dba867e8252d8560a1a27","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bbd6e97c836cbeb9606d7b7e5dcf8a1d89525713","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c24c9c4cab11858f22f309521ba7ea5b1e7385f2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45942","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.427","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix e4b bitmap inconsistency reports\n\nA bitmap inconsistency issue was observed during stress tests under\nmixed huge-page workloads. Ext4 reported multiple e4b bitmap check\nfailures like:\n\next4_mb_complex_scan_group:2508: group 350, 8179 free clusters as\nper group info. But got 8192 blocks\n\nAnalysis and experimentation confirmed that the issue is caused by a\nrace condition between page migration and bitmap modification. Although\nthis timing window is extremely narrow, it is still hit in practice:\n\nfolio_lock                        ext4_mb_load_buddy\n__migrate_folio\n  check ref count\n  folio_mc_copy                     __filemap_get_folio\n                                      folio_try_get(folio)\n                                  ......\n                                  mb_mark_used\n                                  ext4_mb_unload_buddy\n  __folio_migrate_mapping\n    folio_ref_freeze\nfolio_unlock\n\nThe root cause of this issue is that the fast path of load_buddy only\nincrements the folio's reference count, which is insufficient to prevent\nconcurrent folio migration. We observed that the folio migration process\nacquires the folio lock. Therefore, we can determine whether to take the\nfast path in load_buddy by checking the lock status. If the folio is\nlocked, we opt for the slow path (which acquires the lock) to close this\nconcurrency window.\n\nAdditionally, this change addresses the following issues:\n\nWhen the DOUBLE_CHECK macro is enabled to inspect bitmap-related\nissues, the following error may be triggered:\n\ncorruption in group 324 at byte 784(6272): f in copy != ff on\ndisk/prealloc\n\nAnalysis reveals that this is a false positive. There is a specific race\nwindow where the bitmap and the group descriptor become momentarily\ninconsistent, leading to this error report:\n\next4_mb_load_buddy                   ext4_mb_load_buddy\n  __filemap_get_folio(create|lock)\n    folio_lock\n  ext4_mb_init_cache\n    folio_mark_uptodate\n                                     __filemap_get_folio(no lock)\n                                     ......\n                                     mb_mark_used\n                                       mb_mark_used_double\n  mb_cmp_bitmaps\n                                       mb_set_bits(e4b->bd_bitmap)\n  folio_unlock\n\nThe original logic assumed that since mb_cmp_bitmaps is called when the\nbitmap is newly loaded from disk, the folio lock would be sufficient to\nprevent concurrent access. However, this overlooks a specific race\ncondition: if another process attempts to load buddy and finds the folio\nis already in an uptodate state, it will immediately begin using it without\nholding folio lock."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/29a07d691d282faf38c33d4b61839b89399110f9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/57e83bfbe1e412ac42daced2086f3c6f9a17bba0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bdc56a9c46b2a99c12313122b9352b619a2e719e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c05033cfc5c7699cd4df8d48cef94d01da755f24","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f29709a7a3fc38f5015d850504762cdef0e151f9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45943","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.557","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: fix inline data read failure for ztailpacking pclusters\n\nCompressed folios for ztailpacking pclusters must be valid before adding\nthese pclusters to I/O chains. Otherwise, z_erofs_decompress_pcluster()\nmay assume they are already valid and then trigger a NULL pointer\ndereference.\n\nIt is somewhat hard to reproduce because the inline data is in the same\nblock as the tail of the compressed indexes, which are usually read just\nbefore. However, it may still happen if a fatal signal arrives while\nread_mapping_folio() is running, as shown below:\n\n erofs: (device dm-1): z_erofs_pcluster_begin: failed to get inline data -4\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008\n\n ...\n\n pc : z_erofs_decompress_queue+0x4c8/0xa14\n lr : z_erofs_decompress_queue+0x160/0xa14\n sp : ffffffc08b3eb3a0\n x29: ffffffc08b3eb570 x28: ffffffc08b3eb418 x27: 0000000000001000\n x26: ffffff8086ebdbb8 x25: ffffff8086ebdbb8 x24: 0000000000000001\n x23: 0000000000000008 x22: 00000000fffffffb x21: dead000000000700\n x20: 00000000000015e7 x19: ffffff808babb400 x18: ffffffc089edc098\n x17: 00000000c006287d x16: 00000000c006287d x15: 0000000000000004\n x14: ffffff80ba8f8000 x13: 0000000000000004 x12: 00000006589a77c9\n x11: 0000000000000015 x10: 0000000000000000 x9 : 0000000000000000\n x8 : 0000000000000000 x7 : 0000000000000000 x6 : 000000000000003f\n x5 : 0000000000000040 x4 : ffffffffffffffe0 x3 : 0000000000000020\n x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n  z_erofs_decompress_queue+0x4c8/0xa14\n  z_erofs_runqueue+0x908/0x97c\n  z_erofs_read_folio+0x128/0x228\n  filemap_read_folio+0x68/0x128\n  filemap_get_pages+0x44c/0x8b4\n  filemap_read+0x12c/0x5b8\n  generic_file_read_iter+0x4c/0x15c\n  do_iter_readv_writev+0x188/0x1e0\n  vfs_iter_read+0xac/0x1a4\n  backing_file_read_iter+0x170/0x34c\n  ovl_read_iter+0xf0/0x140\n  vfs_read+0x28c/0x344\n  ksys_read+0x80/0xf0\n  __arm64_sys_read+0x24/0x34\n  invoke_syscall+0x60/0x114\n  el0_svc_common+0x88/0xe4\n  do_el0_svc+0x24/0x30\n  el0_svc+0x40/0xa8\n  el0t_64_sync_handler+0x70/0xbc\n  el0t_64_sync+0x1bc/0x1c0\n\nFix this by reading the inline data before allocating and adding\nthe pclusters to the I/O chains."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5de1aa0bf3a5db0b3cbf61959da5ac61250833ed","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/92088bd9aa2a7246bba8b9648fbc64edd173cf17","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ad07ea069f924465061cfee40ef2861bb99f4dd8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c134a40f86efb8d6b5a949ef70e06d5752209be5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45944","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.677","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Clear Present bit before tearing down context entry\n\nWhen tearing down a context entry, the current implementation zeros the\nentire 128-bit entry using multiple 64-bit writes. This creates a window\nwhere the hardware can fetch a \"torn\" entry — where some fields are\nalready zeroed while the 'Present' bit is still set — leading to\nunpredictable behavior or spurious faults.\n\nWhile x86 provides strong write ordering, the compiler may reorder writes\nto the two 64-bit halves of the context entry. Even without compiler\nreordering, the hardware fetch is not guaranteed to be atomic with\nrespect to multiple CPU writes.\n\nAlign with the \"Guidance to Software for Invalidations\" in the VT-d spec\n(Section 6.5.3.3) by implementing the recommended ownership handshake:\n\n1. Clear only the 'Present' (P) bit of the context entry first to\n   signal the transition of ownership from hardware to software.\n2. Use dma_wmb() to ensure the cleared bit is visible to the IOMMU.\n3. Perform the required cache and context-cache invalidation to ensure\n   hardware no longer has cached references to the entry.\n4. Fully zero out the entry only after the invalidation is complete.\n\nAlso, add a dma_wmb() to context_set_present() to ensure the entry\nis fully initialized before the 'Present' bit becomes visible."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/a922dbafb4a674d958d702038232d09a30daf770","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c1e4f1dccbe9d7656d1c6872ebeadb5992d0aaa2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d2138abc8f0a7fce4101b7229b43b06811ed083d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45945","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.790","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix race condition during PASID entry replacement\n\nThe Intel VT-d PASID table entry is 512 bits (64 bytes). When replacing\nan active PASID entry (e.g., during domain replacement), the current\nimplementation calculates a new entry on the stack and copies it to the\ntable using a single structure assignment.\n\n        struct pasid_entry *pte, new_pte;\n\n        pte = intel_pasid_get_entry(dev, pasid);\n        pasid_pte_config_first_level(iommu, &new_pte, ...);\n        *pte = new_pte;\n\nBecause the hardware may fetch the 512-bit PASID entry in multiple\n128-bit chunks, updating the entire entry while it is active (Present\nbit set) risks a \"torn\" read. In this scenario, the IOMMU hardware\ncould observe an inconsistent state — partially new data and partially\nold data — leading to unpredictable behavior or spurious faults.\n\nFix this by removing the unsafe \"replace\" helpers and following the\n\"clear-then-update\" flow, which ensures the Present bit is cleared and\nthe required invalidation handshake is completed before the new\nconfiguration is applied."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/66a7aff480a82b8642b3991fed5fdc9780022157","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c3b1edea3791fa91ab7032faa90355913ad9451b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45946","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:10.900","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\npower: supply: ab8500: Fix use-after-free in power_supply_changed()\n\nUsing the `devm_` variant for requesting IRQ _before_ the `devm_`\nvariant for allocating/registering the `power_supply` handle, means that\nthe `power_supply` handle will be deallocated/unregistered _before_ the\ninterrupt handler (since `devm_` naturally deallocates in reverse\nallocation order). This means that during removal, there is a race\ncondition where an interrupt can fire just _after_ the `power_supply`\nhandle has been freed, *but* just _before_ the corresponding\nunregistration of the IRQ handler has run.\n\nThis will lead to the IRQ handler calling `power_supply_changed()` with\na freed `power_supply` handle. Which usually crashes the system or\notherwise silently corrupts the memory...\n\nNote that there is a similar situation which can also happen during\n`probe()`; the possibility of an interrupt firing _before_ registering\nthe `power_supply` handle. This would then lead to the nasty situation\nof using the `power_supply` handle *uninitialized* in\n`power_supply_changed()`.\n\nCommit 1c1f13a006ed (\"power: supply: ab8500: Move to componentized\nbinding\") introduced this issue during a refactorization. Fix this racy\nuse-after-free by making sure the IRQ is requested _after_ the\nregistration of the `power_supply` handle."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/43cbb78ee047b9b12d096d40e3be265969d4c1f8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/46dbda27b028d78087667e8280966b99cec015ca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/551672981fe227122258a25a385a05f5c0746ad6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/709db4b476e254579d9c48ec34d397a41ca0c407","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/847eeb6c0efcd76c7def73857cf798a4fcd8f79b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c4af8a98bb52825a5331ae1d0604c0ea6956ba4b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f50433f2603def08b21a4bf2fd238687fb5cbde9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45947","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.040","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc()\n\nIn amdgpu_acpi_enumerate_xcc(), if amdgpu_acpi_dev_init() returns -ENOMEM,\nthe function returns directly without releasing the allocated xcc_info,\nresulting in a memory leak.\n\nFix this by ensuring that xcc_info is properly freed in the error paths.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/18a7bbd11f17a7cd4c42fd5955d3675d68c692df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7e4b612fe7a960d610c20260c9ee220bddd1b215","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c9be63d565789b56ca7b0197e2cb78a3671f95a8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d1370ef2ecf7d4df25e3e1e430cd191b1e7f8596","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e87c73a80a12d337cf5f493c0956f6c2c9eafd80","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45948","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.157","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix memory leak in ext4_ext_shift_extents()\n\nIn ext4_ext_shift_extents(), if the extent is NULL in the while loop, the\nfunction returns immediately without releasing the path obtained via\next4_find_extent(), leading to a memory leak.\n\nFix this by jumping to the out label to ensure the path is properly\nreleased."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/12615ab4bfb69678e5d961b28bb70040299e51b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1bce219ee5512cf179ba40cf114945a14a16e21f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2f4b1052246ca646bb17bfe0f53df2fdf9729b58","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4a79fde8db7eba7f1128d971ceba4e3c9ac84aec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7e807cb8603b7664fa630a696cd891d9a03c248d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/afc5e61e1a07b2b833bd72cbee36ecce9cd901e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bd7b52557e4a3ccd7595fdb3a585f1257de57935","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca81109d4a8f192dc1cbad4a1ee25246363c2833","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45949","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.327","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwrng: core - use RCU and work_struct to fix race condition\n\nCurrently, hwrng_fill is not cleared until the hwrng_fillfn() thread\nexits. Since hwrng_unregister() reads hwrng_fill outside the rng_mutex\nlock, a concurrent hwrng_unregister() may call kthread_stop() again on\nthe same task.\n\nAdditionally, if hwrng_unregister() is called immediately after\nhwrng_register(), the stopped thread may have never been executed. Thus,\nhwrng_fill remains dirty even after hwrng_unregister() returns. In this\ncase, subsequent calls to hwrng_register() will fail to start new\nthreads, and hwrng_unregister() will call kthread_stop() on the same\nfreed task. In both cases, a use-after-free occurs:\n\nrefcount_t: addition on 0; use-after-free.\nWARNING: ... at lib/refcount.c:25 refcount_warn_saturate+0xec/0x1c0\nCall Trace:\n kthread_stop+0x181/0x360\n hwrng_unregister+0x288/0x380\n virtrng_remove+0xe3/0x200\n\nThis patch fixes the race by protecting the global hwrng_fill pointer\ninside the rng_mutex lock, so that hwrng_fillfn() thread is stopped only\nonce, and calls to kthread_run() and kthread_stop() are serialized\nwith the lock held.\n\nTo avoid deadlock in hwrng_fillfn() while being stopped with the lock\nheld, we convert current_rng to RCU, so that get_current_rng() can read\ncurrent_rng without holding the lock. To remove the lock from put_rng(),\nwe also delay the actual cleanup into a work_struct.\n\nSince get_current_rng() no longer returns ERR_PTR values, the IS_ERR()\nchecks are removed from its callers.\n\nWith hwrng_fill protected by the rng_mutex lock, hwrng_fillfn() can no\nlonger clear hwrng_fill itself. Therefore, if hwrng_fillfn() returns\ndirectly after current_rng is dropped, kthread_stop() would be called on\na freed task_struct later. To fix this, hwrng_fillfn() calls schedule()\nnow to keep the task alive until being stopped. The kthread_stop() call\nis also moved from hwrng_unregister() to drop_current_rng(), ensuring\nkthread_stop() is called on all possible paths where current_rng becomes\nNULL, so that the thread would not wait forever."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/ad38f2cdfef9a2f2899c30cad269baec5bfd4a5d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cc2f39d6ac48e6e3cb2d6240bc0d6df839dd0828","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d5b7730f06994499632026c30e38e0317c4569e2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dcf416eb88eafe1e3c0f920a14bdffd10bc4d259","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45950","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.483","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: starfive - Fix memory leak in starfive_aes_aead_do_one_req()\n\nThe starfive_aes_aead_do_one_req() function allocates rctx->adata with\nkzalloc() but fails to free it if sg_copy_to_buffer() or\nstarfive_aes_hw_init() fails, which lead to memory leaks.\n\nSince rctx->adata is unconditionally freed after the write_adata\noperations, ensure consistent cleanup by freeing the allocation in these\nearlier error paths as well.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/38d80307decc1132626a30e2a62af734630ecca5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4869d0e4e48a5301b267d359b2561c4080791a55","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5f2c964a058581e1557c32d5de651c67a80438a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ccb679fdae2e62ed92fd9acb25ed809c0226fcc6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45951","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.613","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix a potential use-after-free of BTF object\n\nRefcounting in the check_pseudo_btf_id() function is incorrect:\nthe __check_pseudo_btf_id() function might get called with a zero\nrefcounted btf. Fix this, and patch related code accordingly.\n\nv3: rephrase a comment (AI)\nv2: fix a refcount leak introduced in v1 (AI)"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9ff46ffeecdb1802d6e26183177935b948a12e7f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ccd2d799ed4467c07f5ee18c2f5c59bcc990822c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eac65c272f3b49021a843cba5107d63627395e0e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45952","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.713","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\neth: fbnic: Add validation for MTU changes\n\nIncreasing the MTU beyond the HDS threshold causes the hardware to\nfragment packets across multiple buffers. If a single-buffer XDP program\nis attached, the driver will drop all multi-frag frames. While we can't\nprevent a remote sender from sending non-TCP packets larger than the MTU,\nthis will prevent users from inadvertently breaking new TCP streams.\n\nTraditionally, drivers supported XDP with MTU less than 4Kb\n(packet per page). Fbnic currently prevents attaching XDP when MTU is too high.\nBut it does not prevent increasing MTU after XDP is attached."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/03399063aa0c67fd8bdfd69467ddb849bb3b97df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ccd8e87748ad083047d6c8544c5809b7f96cc8df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7eaa006c0444a5d4671be7efe6dbb33ef8b515e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45953","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.813","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix IO hang with degraded array with llbitmap\n\nWhen llbitmap bit state is still unwritten, any new write should force\nrcw, as bitmap_ops->blocks_synced() is checked in handle_stripe_dirtying().\nHowever, later the same check is missing in need_this_block(), causing\nstripe to deadloop during handling because handle_stripe() will decide\nto go to handle_stripe_fill(), meanwhile need_this_block() always return\n0 and nothing is handled."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/28ef299e7a5b81817f8ca8297c2ddff28f5da5e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/870b9f15867b0e70f3459ef3974b043e8b229690","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cd1635d844d26471c56c0a432abdee12fc9ad735","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45954","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:11.917","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: au1200fb: Fix a memory leak in au1200fb_drv_probe()\n\nIn au1200fb_drv_probe(), when platform_get_irq fails(), it directly\nreturns from the function with an error code, which causes a memory\nleak.\n\nReplace it with a goto label to ensure proper cleanup."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/071d8fb757a8318f72c8e02898c2cf7e14e21fb6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3d4202ee6494c0d576cdc104b12e0834ca8136a8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3e5349e54113e2dce1a659c57935e18032742e56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/762a26818934241b8b0172a229d2cf5d87260e40","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/81831d56b723bc1090ce3158feddaca88e85f939","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b024a8efee0f55d330a1cdd3eac8f79ac5acd3be","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bd1ad63e11b2a568e98de536f319054d2de29f56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ce4e25198a6aaaaf36248edf8daf3d744ec8e309","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45955","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.050","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/md-llbitmap: fix percpu_ref not resurrected on suspend timeout\n\nWhen llbitmap_suspend_timeout() times out waiting for percpu_ref to\nbecome zero, it returns -ETIMEDOUT without resurrecting the percpu_ref.\nThe caller (md_llbitmap_daemon_fn) then continues to the next page\nwithout calling llbitmap_resume(), leaving the percpu_ref in a killed\nstate permanently.\n\nFix this by resurrecting the percpu_ref before returning the error,\nensuring the page control structure remains usable for subsequent\noperations."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/095417d6b669c2dec39a5842ccb94df915f97f54","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2446d099350185caeed19ab2c0270451a97296fb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d119bd2e1643cc023210ff3c6f0657e4f914e71d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45956","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.157","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/exynos: vidi: use priv->vidi_dev for ctx lookup in vidi_connection_ioctl()\n\nvidi_connection_ioctl() retrieves the driver_data from drm_dev->dev to\nobtain a struct vidi_context pointer. However, drm_dev->dev is the\nexynos-drm master device, and the driver_data contained therein is not\nthe vidi component device, but a completely different device.\n\nThis can lead to various bugs, ranging from null pointer dereferences and\ngarbage value accesses to, in unlucky cases, out-of-bounds errors,\nuse-after-free errors, and more.\n\nTo resolve this issue, we need to store/delete the vidi device pointer in\nexynos_drm_private->vidi_dev during bind/unbind, and then read this\nexynos_drm_private->vidi_dev within ioctl() to obtain the correct\nstruct vidi_context pointer."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/21ca24ba51a2c28bcc4df9d7e5a40b0eb66ab76d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2987642c5213508c6c9e718324c0d5289a92c474","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65d1213baffa363f2eb1117b1dc7acc573b890f8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/875fa28690e93ed5296c31d3344556c6bb867234","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a540f767642f75240a6c35f6a65b69e44cfcea9d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b5fc86d753dd4c281a943b92f0eef02d31af03d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d3968a0d85b211e197f2f4f06268a7031079e0d0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45957","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.280","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrcu: Fix rcu_read_unlock() deadloop due to softirq\n\nCommit 5f5fa7ea89dc (\"rcu: Don't use negative nesting depth in\n__rcu_read_unlock()\") removes the recursion-protection code from\n__rcu_read_unlock(). Therefore, we could invoke the deadloop in\nraise_softirq_irqoff() with ftrace enabled as follows:\n\nWARNING: CPU: 0 PID: 0 at kernel/trace/trace.c:3021 __ftrace_trace_stack.constprop.0+0x172/0x180\nModules linked in: my_irq_work(O)\nCPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G O 6.18.0-rc7-dirty #23 PREEMPT(full)\nTainted: [O]=OOT_MODULE\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nRIP: 0010:__ftrace_trace_stack.constprop.0+0x172/0x180\nRSP: 0018:ffffc900000034a8 EFLAGS: 00010002\nRAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000000000\nRDX: 0000000000000003 RSI: ffffffff826d7b87 RDI: ffffffff826e9329\nRBP: 0000000000090009 R08: 0000000000000005 R09: ffffffff82afbc4c\nR10: 0000000000000008 R11: 0000000000011d7a R12: 0000000000000000\nR13: ffff888003874100 R14: 0000000000000003 R15: ffff8880038c1054\nFS:  0000000000000000(0000) GS:ffff8880fa8ea000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055b31fa7f540 CR3: 00000000078f4005 CR4: 0000000000770ef0\nPKRU: 55555554\nCall Trace:\n <IRQ>\n trace_buffer_unlock_commit_regs+0x6d/0x220\n trace_event_buffer_commit+0x5c/0x260\n trace_event_raw_event_softirq+0x47/0x80\n raise_softirq_irqoff+0x6e/0xa0\n rcu_read_unlock_special+0xb1/0x160\n unwind_next_frame+0x203/0x9b0\n __unwind_start+0x15d/0x1c0\n arch_stack_walk+0x62/0xf0\n stack_trace_save+0x48/0x70\n __ftrace_trace_stack.constprop.0+0x144/0x180\n trace_buffer_unlock_commit_regs+0x6d/0x220\n trace_event_buffer_commit+0x5c/0x260\n trace_event_raw_event_softirq+0x47/0x80\n raise_softirq_irqoff+0x6e/0xa0\n rcu_read_unlock_special+0xb1/0x160\n unwind_next_frame+0x203/0x9b0\n __unwind_start+0x15d/0x1c0\n arch_stack_walk+0x62/0xf0\n stack_trace_save+0x48/0x70\n __ftrace_trace_stack.constprop.0+0x144/0x180\n trace_buffer_unlock_commit_regs+0x6d/0x220\n trace_event_buffer_commit+0x5c/0x260\n trace_event_raw_event_softirq+0x47/0x80\n raise_softirq_irqoff+0x6e/0xa0\n rcu_read_unlock_special+0xb1/0x160\n unwind_next_frame+0x203/0x9b0\n __unwind_start+0x15d/0x1c0\n arch_stack_walk+0x62/0xf0\n stack_trace_save+0x48/0x70\n __ftrace_trace_stack.constprop.0+0x144/0x180\n trace_buffer_unlock_commit_regs+0x6d/0x220\n trace_event_buffer_commit+0x5c/0x260\n trace_event_raw_event_softirq+0x47/0x80\n raise_softirq_irqoff+0x6e/0xa0\n rcu_read_unlock_special+0xb1/0x160\n __is_insn_slot_addr+0x54/0x70\n kernel_text_address+0x48/0xc0\n __kernel_text_address+0xd/0x40\n unwind_get_return_address+0x1e/0x40\n arch_stack_walk+0x9c/0xf0\n stack_trace_save+0x48/0x70\n __ftrace_trace_stack.constprop.0+0x144/0x180\n trace_buffer_unlock_commit_regs+0x6d/0x220\n trace_event_buffer_commit+0x5c/0x260\n trace_event_raw_event_softirq+0x47/0x80\n __raise_softirq_irqoff+0x61/0x80\n __flush_smp_call_function_queue+0x115/0x420\n __sysvec_call_function_single+0x17/0xb0\n sysvec_call_function_single+0x8c/0xc0\n </IRQ>\n\nCommit b41642c87716 (\"rcu: Fix rcu_read_unlock() deadloop due to IRQ work\")\nfixed the infinite loop in rcu_read_unlock_special() for IRQ work by\nsetting a flag before calling irq_work_queue_on(). We fix this issue by\nsetting the same flag before calling raise_softirq_irqoff() and rename the\nflag to defer_qs_pending for more common."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1f16679a5aa60238466ce339c35f5e82ece60337","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4a4a6e12c9c829be3f74b7206fa8640fc4e1c566","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/979c708e6c9d7fc461daef2dad8b45f22e23464c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c2932e16d8c354404b17123e64daa8e33191e145","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d41e37f26b3157b3f1d10223863519a943aa239b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45958","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.417","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/exynos: vidi: fix to avoid directly dereferencing user pointer\n\nIn vidi_connection_ioctl(), vidi->edid(user pointer) is directly\ndereferenced in the kernel.\n\nThis allows arbitrary kernel memory access from the user space, so instead\nof directly accessing the user pointer in the kernel, we should modify it\nto copy edid to kernel memory using copy_from_user() and use it."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/13537f7f6d28a87ee2e496e071b6ad9541905f23","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/235d702b771416b8a61e81bb09ba39282e4268fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2e147aa3169b83eaf044776f81d86235bf147de1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4949e32387fe315b59ad5f422c9fc52836fbdd1e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c4193829109f38b2855de77981adc2e066286c7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7efb6a4e6b1b523e744d17e6249757ed97caae7c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c2914c0ca7557c6c5c845621cb6d6c9f26ab5a8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d4c98c077c7fb2dfdece7d605e694b5ea2665085","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45959","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.543","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccp - Fix a crash due to incorrect cleanup usage of kfree\n\nAnnotating a local pointer variable, which will be assigned with the\nkmalloc-family functions, with the `__cleanup(kfree)` attribute will\nmake the address of the local variable, rather than the address returned\nby kmalloc, passed to kfree directly and lead to a crash due to invalid\ndeallocation of stack address. According to other places in the repo,\nthe correct usage should be `__free(kfree)`. The code coincidentally\ncompiled because the parameter type `void *` of kfree is compatible with\nthe desired type `struct { ... } **`."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/90f9090e3e744a8fe3bb6fa0e61f577347728b0b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a3ace9b010ffd8c422c97844ae152f7c53d6b18","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d5abcc33ee76bc26d58b39dc1a097e43a99dd438","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45960","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.650","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: return error when node already exists in hfs_bnode_create\n\nWhen hfs_bnode_create() finds that a node is already hashed (which should\nnot happen in normal operation), it currently returns the existing node\nwithout incrementing its reference count. This causes a reference count\ninconsistency that leads to a kernel panic when the node is later freed\nin hfs_bnode_put():\n\n    kernel BUG at fs/hfsplus/bnode.c:676!\n    BUG_ON(!atomic_read(&node->refcnt))\n\nThis scenario can occur when hfs_bmap_alloc() attempts to allocate a node\nthat is already in use (e.g., when node 0's bitmap bit is incorrectly\nunset), or due to filesystem corruption.\n\nReturning an existing node from a create path is not normal operation.\n\nFix this by returning ERR_PTR(-EEXIST) instead of the node when it's\nalready hashed. This properly signals the error condition to callers,\nwhich already check for IS_ERR() return values."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1ca428769cb4737a25bd32fb4d1573cc09eeaeef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2e6ff6a6fc69cc17ed10c9cb6242935d52acd52d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2e9185a42e0e237c74435fd092b7c34537c62156","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/507a1de58c21c95ad7c44afccaf1222d1c42246b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/51838112d9c22502333c3085ca0c0d691e7093c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7b57ada854b32310f224abd61bcfec2d5790ff0a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/986455135b95f32c1f142068e451098fc751749e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d8a73cc46c8462a969a7516131feb3096f4c49d3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45961","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.783","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: fix memory leaks in gfs2_fill_super error path\n\nFix two memory leaks in the gfs2_fill_super() error handling path when\ntransitioning a filesystem to read-write mode fails.\n\nFirst leak: kthread objects (thread_struct, task_struct, etc.)\nWhen gfs2_freeze_lock_shared() fails after init_threads() succeeds, the\ncreated kernel threads (logd and quotad) are never destroyed. This\noccurs because the fail_per_node label doesn't call\ngfs2_destroy_threads().\n\nSecond leak: quota bitmap buffer (8192 bytes)\nWhen gfs2_make_fs_rw() fails after gfs2_quota_init() succeeds but\nbefore other operations complete, the allocated quota bitmap is never\nfreed.\n\nThe fix moves thread cleanup to the fail_per_node label to handle all\nerror paths uniformly. gfs2_destroy_threads() is safe to call\nunconditionally as it checks for NULL pointers. Quota cleanup is added\nin gfs2_make_fs_rw() to properly handle the withdrawal case where\nquota initialization succeeds but the filesystem is then withdrawn.\n\nThread leak backtrace (gfs2_freeze_lock_shared failure):\n  unreferenced object 0xffff88801d7bca80 (size 4480):\n    copy_process+0x3a1/0x4670 kernel/fork.c:2422\n    kernel_clone+0xf3/0x6e0 kernel/fork.c:2779\n    kthread_create_on_node+0x100/0x150 kernel/kthread.c:478\n    init_threads+0xab/0x350 fs/gfs2/ops_fstype.c:611\n    gfs2_fill_super+0xe5c/0x1240 fs/gfs2/ops_fstype.c:1265\n\nQuota leak backtrace (gfs2_make_fs_rw failure):\n  unreferenced object 0xffff88812de7c000 (size 8192):\n    gfs2_quota_init+0xe5/0x820 fs/gfs2/quota.c:1409\n    gfs2_make_fs_rw+0x7a/0xe0 fs/gfs2/super.c:149\n    gfs2_fill_super+0xfbb/0x1240 fs/gfs2/ops_fstype.c:1275"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/da6f5bbc2e7902f578b503f2a4c3d8d09ca4b102","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e54229ecf49add8451d5f765a32c86ab4446e06c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45962","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:12.917","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nublk: Validate SQE128 flag before accessing the cmd\n\nublk_ctrl_cmd_dump() accesses (header *)sqe->cmd before\nIO_URING_F_SQE128 flag check. This could cause out of boundary memory\naccess.\n\nMove the SQE128 flag check earlier in ublk_ctrl_uring_cmd() to return\n-EINVAL immediately if the flag is not set."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/17d33ba7291100008360b5a354962db37ad80684","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/31cac6acf77ece488f29fb8f79589d9298e969c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4b4dff498f46e9802f71bc84258bf73065f51c6a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da7e4b75e50c087d2031a92f6646eb90f7045a67","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbe8e81a2ec608f87f79a34f6444cd62f6a243bb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f75a5555e0049e7857eae25b60aee98b80e287ec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45963","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.047","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: nau8821: Cancel delayed work on component remove\n\nAttempting to unload the driver while a jack detection work is pending\nwould likely crash the kernel when it is eventually scheduled for\nexecution:\n\n[ 1984.896308] BUG: unable to handle page fault for address: ffffffffc10c2a20\n[...]\n[ 1984.896388] Hardware name: Valve Jupiter/Jupiter, BIOS F7A0131 01/30/2024\n[ 1984.896396] Workqueue: events nau8821_jdet_work [snd_soc_nau8821]\n[ 1984.896414] RIP: 0010:__mutex_lock+0x9f/0x11d0\n[...]\n[ 1984.896504] Call Trace:\n[ 1984.896511]  <TASK>\n[ 1984.896524]  ? snd_soc_dapm_disable_pin+0x26/0x60 [snd_soc_core]\n[ 1984.896572]  ? snd_soc_dapm_disable_pin+0x26/0x60 [snd_soc_core]\n[ 1984.896596]  snd_soc_dapm_disable_pin+0x26/0x60 [snd_soc_core]\n[ 1984.896622]  nau8821_jdet_work+0xeb/0x1e0 [snd_soc_nau8821]\n[ 1984.896636]  process_one_work+0x211/0x590\n[ 1984.896649]  ? srso_return_thunk+0x5/0x5f\n[ 1984.896670]  worker_thread+0x1cd/0x3a0\n\nCancel unscheduled jdet_work or wait for its execution to finish before\nthe component driver gets removed."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3955767ec39dcc0358470ffe6535703e2b7fd815","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbd3fd05cddfdeec1e49b0a66269881c09eebd17","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45964","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.177","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix gss_auth kref leak in gss_alloc_msg error path\n\nCommit 5940d1cf9f42 (\"SUNRPC: Rebalance a kref in auth_gss.c\") added\na kref_get(&gss_auth->kref) call to balance the gss_put_auth() done\nin gss_release_msg(), but forgot to add a corresponding kref_put()\non the error path when kstrdup_const() fails.\n\nIf service_name is non-NULL and kstrdup_const() fails, the function\njumps to err_put_pipe_version which calls put_pipe_version() and\nkfree(gss_msg), but never releases the gss_auth reference. This leads\nto a kref leak where the gss_auth structure is never freed.\n\nAdd a forward declaration for gss_free_callback() and call kref_put()\nin the err_put_pipe_version error path to properly release the\nreference taken earlier."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3b2b6c42070ce4204936288253baf101e995c2d3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/655c9ba9915f05266998dbbf4b76b3c79b8a70aa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a1bc9561b617ec7e2d09e6c134d1db8fcf9ca4a6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a2d4e9a76de0b2178001214ba5de5bf94a7354aa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b559be2ec6cdb2e9c2c36c23fbbd4690d8a5c3f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c20f925214249bb4fc04f7e197bea142a6438af6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dd2fdc3504592d85e549c523b054898a036a6afe","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e464e26b2457005c87e158570498274b9f3b90c7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45965","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.307","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix invalid deref of rawdata when export_binary is unset\n\nIf the export_binary parameter is disabled on runtime, profiles that\nwere loaded before that will still have their rawdata stored in\napparmorfs, with a symbolic link to the rawdata on the policy\ndirectory. When one of those profiles are replaced, the rawdata is set\nto NULL, but when trying to resolve the symbolic links to rawdata for\nthat profile, it will try to dereference profile->rawdata->name when\nprofile->rawdata is now NULL causing an oops. Fix it by checking if\nrawdata is set.\n\n[  168.653080] BUG: kernel NULL pointer dereference, address: 0000000000000088\n[  168.657420] #PF: supervisor read access in kernel mode\n[  168.660619] #PF: error_code(0x0000) - not-present page\n[  168.663613] PGD 0 P4D 0\n[  168.665450] Oops: Oops: 0000 [#1] SMP NOPTI\n[  168.667836] CPU: 1 UID: 0 PID: 1729 Comm: ls Not tainted 6.19.0-rc7+ #3 PREEMPT(voluntary)\n[  168.672308] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[  168.679327] RIP: 0010:rawdata_get_link_base.isra.0+0x23/0x330\n[  168.682768] Code: 90 90 90 90 90 90 90 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 18 48 89 55 d0 48 85 ff 0f 84 e3 01 00 00 <48> 83 3c 25 88 00 00 00 00 0f 84 d4 01 00 00 49 89 f6 49 89 cc e8\n[  168.689818] RSP: 0018:ffffcdcb8200fb80 EFLAGS: 00010282\n[  168.690871] RAX: ffffffffaee74ec0 RBX: 0000000000000000 RCX: ffffffffb0120158\n[  168.692251] RDX: ffffcdcb8200fbe0 RSI: ffff88c187c9fa80 RDI: ffff88c186c98a80\n[  168.693593] RBP: ffffcdcb8200fbc0 R08: 0000000000000000 R09: 0000000000000000\n[  168.694941] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88c186c98a80\n[  168.696289] R13: 00007fff005aaa20 R14: 0000000000000080 R15: ffff88c188f4fce0\n[  168.697637] FS:  0000790e81c58280(0000) GS:ffff88c20a957000(0000) knlGS:0000000000000000\n[  168.699227] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  168.700349] CR2: 0000000000000088 CR3: 000000012fd3e000 CR4: 0000000000350ef0\n[  168.701696] Call Trace:\n[  168.702325]  <TASK>\n[  168.702995]  rawdata_get_link_data+0x1c/0x30\n[  168.704145]  vfs_readlink+0xd4/0x160\n[  168.705152]  do_readlinkat+0x114/0x180\n[  168.706214]  __x64_sys_readlink+0x1e/0x30\n[  168.708653]  x64_sys_call+0x1d77/0x26b0\n[  168.709525]  do_syscall_64+0x81/0x500\n[  168.710348]  ? do_statx+0x72/0xb0\n[  168.711109]  ? putname+0x3e/0x80\n[  168.711845]  ? __x64_sys_statx+0xb7/0x100\n[  168.712711]  ? x64_sys_call+0x10fc/0x26b0\n[  168.713577]  ? do_syscall_64+0xbf/0x500\n[  168.714412]  ? do_user_addr_fault+0x1d2/0x8d0\n[  168.715404]  ? irqentry_exit+0xb2/0x740\n[  168.716359]  ? exc_page_fault+0x90/0x1b0\n[  168.717307]  entry_SYSCALL_64_after_hwframe+0x76/0x7e"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1432ab0774cba43e8111be39989ff226531a9bac","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/19f2e4055626a58842ddec3282ad4465a80c6625","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1d2b2b58fde9059a488bc25399e6c3d74e9b5548","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3c36b87fc2a4cf88eadea8cf13923bd2b4f9a3fa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d8c180c825cbc73eeffaa79591f8e142dacae70","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b25298e89a297c42eb4c4d6f081d60375b820abb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/df9ac55abd18628bd8cff687ea043660532a3654","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e6b2fc7e34d4e7ca6b8598c33a3d45d59e455d8d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45966","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.460","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix NULL pointer dereference in __unix_needs_revalidation\n\nWhen receiving file descriptors via SCM_RIGHTS, both the socket pointer\nand the socket's sk pointer can be NULL during socket setup or teardown,\ncausing NULL pointer dereferences in __unix_needs_revalidation().\n\nThis is a regression in AppArmor 5.0.0 (kernel 6.17+) where the new\n__unix_needs_revalidation() function was added without proper NULL checks.\n\nThe crash manifests as:\n  BUG: kernel NULL pointer dereference, address: 0x0000000000000018\n  RIP: aa_file_perm+0xb7/0x3b0 (or +0xbe/0x3b0, +0xc0/0x3e0)\n  Call Trace:\n   apparmor_file_receive+0x42/0x80\n   security_file_receive+0x2e/0x50\n   receive_fd+0x1d/0xf0\n   scm_detach_fds+0xad/0x1c0\n\nThe function dereferences sock->sk->sk_family without checking if either\nsock or sock->sk is NULL first.\n\nAdd NULL checks for both sock and sock->sk before accessing sk_family."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/e2938ad00b21340c0362562dfedd7cfec0554d67","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e85bc9101afc4202aa2269967ce9d3ffbecd0994","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fea017a7f6abe179decf575a2d8464c74edb3964","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45967","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.567","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Return proper address for non-zero offsets in insn array\n\nThe map_direct_value_addr() function of the instruction\narray map incorrectly adds offset to the resulting address.\nThis is a bug, because later the resolve_pseudo_ldimm64()\nfunction adds the offset. Fix it. Corresponding selftests\nare added in a consequent commit."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/73ef43202a37d779a8e665a0acae214fa59df9fb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e3bd7bdf5ffe49d8381e42843f6e98cd0c78a1e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45968","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.670","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncpuidle: Skip governor when only one idle state is available\n\nOn certain platforms (PowerNV systems without a power-mgt DT node),\ncpuidle may register only a single idle state. In cases where that\nsingle state is a polling state (state 0), the ladder governor may\nincorrectly treat state 1 as the first usable state and pass an\nout-of-bounds index. This can lead to a NULL enter callback being\ninvoked, ultimately resulting in a system crash.\n\n[   13.342636] cpuidle-powernv : Only Snooze is available\n[   13.351854] Faulting instruction address: 0x00000000\n[   13.376489] NIP [0000000000000000] 0x0\n[   13.378351] LR  [c000000001e01974] cpuidle_enter_state+0x2c4/0x668\n\nFix this by adding a bail-out in cpuidle_select() that returns state 0\ndirectly when state_count <= 1, bypassing the governor and keeping the\ntick running."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4da2b897283c39980d6ae09dc1560fcd937879e5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5c577ac939bca486cb02069505cfe47a5312ce02","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5d103a38e2ae96eca57fd17161bcd29bd4622d1c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/63ae78336f40bcd9a44952a7c6bafb9c88a8effd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8f6833d919bae915ead6c599a53e81e19b32da52","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0724e40a58a0e323c59707edeae5b71d15800dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0f7e804edc82e513d1ccb7c95ed8b351522ec81","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e5c9ffc6ae1bcdb1062527d611043681ac301aca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45969","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.800","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: playstation: Add missing check for input_ff_create_memless\n\nThe ps_gamepad_create() function calls input_ff_create_memless()\nwithout verifying its return value,  which can lead to incorrect\nbehavior or potential crashes when FF effects are triggered.\n\nAdd a check for the return value of input_ff_create_memless()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/33acf9a4d6eb1f6d01691faca96ad6b2ab0fcfc0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/35301ca2a83d17aac2f3e8e35c696f0da2a13111","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/45b01d85265bc1ccdd69e0a7887db4b905a778f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/496a345cc047a2c2d9d5a76956e1182525578bd5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/987dee1486e975e2baa6a5d062cfdf18bbe901c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d955aeb26e1210a018492b3b32cbdfaf017aaa25","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e6807641ac94e832988655a1c0e60ccc806b76dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45970","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:13.920","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: alb: fix UAF in rlb_arp_recv during bond up/down\n\nThe ALB RX path may access rx_hashtbl concurrently with bond\nteardown. During rapid bond up/down cycles, rlb_deinitialize()\nfrees rx_hashtbl while RX handlers are still running, leading\nto a null pointer dereference detected by KASAN.\n\nHowever, the root cause is that rlb_arp_recv() can still be accessed\nafter setting recv_probe to NULL, which is actually a use-after-free\n(UAF) issue. That is the reason for using the referenced commit in the\nFixes tag.\n\n[  214.174138] Oops: general protection fault, probably for non-canonical address 0xdffffc000000001d: 0000 [#1] SMP KASAN PTI\n[  214.186478] KASAN: null-ptr-deref in range [0x00000000000000e8-0x00000000000000ef]\n[  214.194933] CPU: 30 UID: 0 PID: 2375 Comm: ping Kdump: loaded Not tainted 6.19.0-rc8+ #2 PREEMPT(voluntary)\n[  214.205907] Hardware name: Dell Inc. PowerEdge R730/0WCJNT, BIOS 2.14.0 01/14/2022\n[  214.214357] RIP: 0010:rlb_arp_recv+0x505/0xab0 [bonding]\n[  214.220320] Code: 0f 85 2b 05 00 00 48 b8 00 00 00 00 00 fc ff df 40 0f b6 ed 48 c1 e5 06 49 03 ad 78 01 00 00 48 8d 7d 28 48 89 fa 48 c1 ea 03 <0f> b6\n 04 02 84 c0 74 06 0f 8e 12 05 00 00 80 7d 28 00 0f 84 8c 00\n[  214.241280] RSP: 0018:ffffc900073d8870 EFLAGS: 00010206\n[  214.247116] RAX: dffffc0000000000 RBX: ffff888168556822 RCX: ffff88816855681e\n[  214.255082] RDX: 000000000000001d RSI: dffffc0000000000 RDI: 00000000000000e8\n[  214.263048] RBP: 00000000000000c0 R08: 0000000000000002 R09: ffffed11192021c8\n[  214.271013] R10: ffff8888c9010e43 R11: 0000000000000001 R12: 1ffff92000e7b119\n[  214.278978] R13: ffff8888c9010e00 R14: ffff888168556822 R15: ffff888168556810\n[  214.286943] FS:  00007f85d2d9cb80(0000) GS:ffff88886ccb3000(0000) knlGS:0000000000000000\n[  214.295966] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  214.302380] CR2: 00007f0d047b5e34 CR3: 00000008a1c2e002 CR4: 00000000001726f0\n[  214.310347] Call Trace:\n[  214.313070]  <IRQ>\n[  214.315318]  ? __pfx_rlb_arp_recv+0x10/0x10 [bonding]\n[  214.320975]  bond_handle_frame+0x166/0xb60 [bonding]\n[  214.326537]  ? __pfx_bond_handle_frame+0x10/0x10 [bonding]\n[  214.332680]  __netif_receive_skb_core.constprop.0+0x576/0x2710\n[  214.339199]  ? __pfx_arp_process+0x10/0x10\n[  214.343775]  ? sched_balance_find_src_group+0x98/0x630\n[  214.349513]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10\n[  214.356513]  ? arp_rcv+0x307/0x690\n[  214.360311]  ? __pfx_arp_rcv+0x10/0x10\n[  214.364499]  ? __lock_acquire+0x58c/0xbd0\n[  214.368975]  __netif_receive_skb_one_core+0xae/0x1b0\n[  214.374518]  ? __pfx___netif_receive_skb_one_core+0x10/0x10\n[  214.380743]  ? lock_acquire+0x10b/0x140\n[  214.385026]  process_backlog+0x3f1/0x13a0\n[  214.389502]  ? process_backlog+0x3aa/0x13a0\n[  214.394174]  __napi_poll.constprop.0+0x9f/0x370\n[  214.399233]  net_rx_action+0x8c1/0xe60\n[  214.403423]  ? __pfx_net_rx_action+0x10/0x10\n[  214.408193]  ? lock_acquire.part.0+0xbd/0x260\n[  214.413058]  ? sched_clock_cpu+0x6c/0x540\n[  214.417540]  ? mark_held_locks+0x40/0x70\n[  214.421920]  handle_softirqs+0x1fd/0x860\n[  214.426302]  ? __pfx_handle_softirqs+0x10/0x10\n[  214.431264]  ? __neigh_event_send+0x2d6/0xf50\n[  214.436131]  do_softirq+0xb1/0xf0\n[  214.439830]  </IRQ>\n\nThe issue is reproducible by repeatedly running\nip link set bond0 up/down while receiving ARP messages, where\nrlb_arp_recv() can race with rlb_deinitialize() and dereference\na freed rx_hashtbl entry.\n\nFix this by setting recv_probe to NULL and then calling\nsynchronize_net() to wait for any concurrent RX processing to finish.\nThis ensures that no RX handler can access rx_hashtbl after it is freed\nin bond_alb_deinitialize()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/c65cdf46ce340c9c00fbbaf84599d2daff43626e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d31065526f160ee0244a719230aa069daca2bf4d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/db5435b5342e3aaa4521d0f3ccfe94316b253ca1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/de7c097800f07f3c108185c7a38b53a530ba30ff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e6834a4c474697df23ab9948fd3577b26bf48656","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f94a0de7b9f32745a14a1621c63087a092823587","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fd54ddc929be1d6c3b3b7b35d6d4642a5d9e803c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fef13c403be3fb685cb06419e6b3623106aab5ba","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45971","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.073","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Limit bpf program signature size\n\nPractical BPF signatures are significantly smaller than\nKMALLOC_MAX_CACHE_SIZE\n\nAllowing larger sizes opens the door for abuse by passing excessive\nsize values and forcing the kernel into expensive allocation paths (via\nkmalloc_large or vmalloc)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5835a077c6f5c565d525eaca9fac01572b97a9b9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ea1535e28bb3773fc0b3cbd1f3842b808016990c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eb8166c79097996396468a341de258a798789d36","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45972","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.173","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF and double free in smb2_open_file()\n\nZero out @err_iov and @err_buftype before retrying SMB2_open() to\nprevent an UAF bug if @data != NULL, otherwise a double free."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4d339b219004869e96c4ce56b8891f83a38da4c0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/639deb962986ef2f5e2a6d5a600c66f922471e81","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7425453ea16dbc3bbb0f6cac4d60b537e5e4d151","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e66dcf7bb9c4df5582c82bc3582725abcbfbea73","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ebbbc4bfad4cb355d17c671223d0814ee3ef4eda","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45973","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.293","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mlx5: Fix UMR hang in LAG error state unload\n\nDuring firmware reset in LAG mode, a race condition causes the driver\nto hang indefinitely while waiting for UMR completion during device\nunload. See [1].\n\nIn LAG mode the bond device is only registered on the master, so it\nnever sees sys_error events from the slave.\nDuring firmware reset this causes UMR waits to hang forever on unload\nas the slave is dead but the master hasn't entered error state yet, so\nUMR posts succeed but completions never arrive.\n\nFix this by adding a sys_error notifier that gets registered before\nMLX5_IB_STAGE_IB_REG and stays alive until after ib_unregister_device().\nThis ensures error events reach the bond device throughout teardown.\n\n[1]\nCall Trace:\n __schedule+0x2bd/0x760\n schedule+0x37/0xa0\n schedule_preempt_disabled+0xa/0x10\n __mutex_lock.isra.6+0x2b5/0x4a0\n __mlx5_ib_dereg_mr+0x606/0x870 [mlx5_ib]\n ? __xa_erase+0x4a/0xa0\n ? _cond_resched+0x15/0x30\n ? wait_for_completion+0x31/0x100\n ib_dereg_mr_user+0x48/0xc0 [ib_core]\n ? rdmacg_uncharge_hierarchy+0xa0/0x100\n destroy_hw_idr_uobject+0x20/0x50 [ib_uverbs]\n uverbs_destroy_uobject+0x37/0x150 [ib_uverbs]\n __uverbs_cleanup_ufile+0xda/0x140 [ib_uverbs]\n uverbs_destroy_ufile_hw+0x3a/0xf0 [ib_uverbs]\n ib_uverbs_remove_one+0xc3/0x140 [ib_uverbs]\n remove_client_context+0x8b/0xd0 [ib_core]\n disable_device+0x8c/0x130 [ib_core]\n __ib_unregister_device+0x10d/0x180 [ib_core]\n ib_unregister_device+0x21/0x30 [ib_core]\n __mlx5_ib_remove+0x1e4/0x1f0 [mlx5_ib]\n auxiliary_bus_remove+0x1e/0x30\n device_release_driver_internal+0x103/0x1f0\n bus_remove_device+0xf7/0x170\n device_del+0x181/0x410\n mlx5_rescan_drivers_locked.part.10+0xa9/0x1d0 [mlx5_core]\n mlx5_disable_lag+0x253/0x260 [mlx5_core]\n mlx5_lag_disable_change+0x89/0xc0 [mlx5_core]\n mlx5_eswitch_disable+0x67/0xa0 [mlx5_core]\n mlx5_unload+0x15/0xd0 [mlx5_core]\n mlx5_unload_one+0x71/0xc0 [mlx5_core]\n mlx5_sync_reset_reload_work+0x83/0x100 [mlx5_core]\n process_one_work+0x1a7/0x360\n worker_thread+0x30/0x390\n ? create_worker+0x1a0/0x1a0\n kthread+0x116/0x130\n ? kthread_flush_work_fn+0x10/0x10\n ret_from_fork+0x22/0x40"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/613f5d4139b6ba801ccd93f9a28943be60d903bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d838873da9cb97551d42316967cc82bf8f8031b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c8fb5c965ac7d0104872a8e4f6451f3bc6328199","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ebc2164a4cd4314503f1a0c8e7aaf76d7e5fa211","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45974","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.430","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found\n\nIf btrfs_search_slot_for_read() returns 1, it means we did not find any\nkey greater than or equals to the key we asked for, meaning we have\nreached the end of the tree and therefore the path is not valid. If\nthis happens we need to break out of the loop and stop, instead of\ncontinuing and accessing an invalid path."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/023545e272f369d487e6a986c1e321c6e04be1da","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0761447f6f51e1c7997960d8e6559337deed6729","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1ee1d006c9fe4d6be5527ab1c84216b80cccbe40","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b2bd557b75b760e4b9d209112bda19314bd64558","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b5b8ade9da452086e78f5d519b90d3769e354853","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7cf2314dd5e8661c05d076cd627eea9a7f76616","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ecb7c2484cfc83a93658907580035a8adf1e0a92","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fd4913a53e3b54ad7e161847291439fe445d6356","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45975","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.590","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nublk: use READ_ONCE() to read struct ublksrv_ctrl_cmd\n\nstruct ublksrv_ctrl_cmd is part of the io_uring_sqe, which may lie in\nuserspace-mapped memory. It's racy to access its fields with normal\nloads, as userspace may write to them concurrently. Use READ_ONCE() to\ncopy the ublksrv_ctrl_cmd from the io_uring_sqe to the stack. Use the\nlocal copy in place of the one in the io_uring_sqe."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/ce63eda3e6d36e2c253febee1c8421ecbd1a680e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ed9f54cc1e335096733aed03c2a46de3d58922ed","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45976","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.700","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix memory leak in amdgpu_ras_init()\n\nWhen amdgpu_nbio_ras_sw_init() fails in amdgpu_ras_init(), the function\nreturns directly without freeing the allocated con structure, leading\nto a memory leak.\n\nFix this by jumping to the release_con label to properly clean up the\nallocated memory before returning the error code.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2fef8c2ac67e7c1b0409d23653300b134c63e54c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3f43e7812b30d6b2e850218f9bb1dae60727fcef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c11cd77a18115d2cd3f4b6915c4a537b6042f950","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee41e5b63c8210525c936ee637a2c8d185ce873c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f8a5426652bdadd4a5cb48326d48abbdfebe8153","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45977","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.800","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfbnic: close fw_log race between users and teardown\n\nFixes a theoretical race on fw_log between the teardown path and fw_log\nwrite functions.\n\nfw_log is written inside fbnic_fw_log_write() and can be reached from\nthe mailbox handler fbnic_fw_msix_intr(), but fw_log is freed before\nIRQ/MBX teardown during cleanup, resulting in a potential data race of\ndereferencing a freed/null variable.\n\nPossible Interleaving Scenario:\n  CPU0: fbnic_fw_msix_intr() // Entry\n          fbnic_fw_log_write()\n            if (fbnic_fw_log_ready())   // true\n            ... preempt ...\n  CPU1: fbnic_remove() // Entry\n          fbnic_fw_log_free()\n            vfree(log->data_start);\n            log->data_start = NULL;\n  CPU0: continues, walks log->entries or writes to log->data_start\n\nThe initialization also has an incorrect order problem, as the fw_log\nis currently allocated after MBX setup during initialization.\nFix the problems by adjusting the synchronization order to put\ninitialization in place before the mailbox is enabled, and not cleared\nuntil after the mailbox has been disabled."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/223cfef4812bdfa5ac5c1aa761cdba03cfe2c9cd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5f10ab3643c58a22fbaee92c4701b00fcb4a465d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee5492fd88cfc079c19fbeac78e9e53b7f6c04f3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45978","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:14.903","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: greybus: lights: avoid NULL deref\n\ngb_lights_light_config() stores channel_count before allocating the\nchannels array. If kcalloc() fails, gb_lights_release() iterates the\nnon-zero count and dereferences light->channels, which is NULL.\n\nAllocate channels first and only then publish channels_count so the\ncleanup path can't walk a NULL pointer."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/01b91cb3e748032fd96bbe0043812b426a52f091","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/06162d85f830582da6e9e5fcf9c9504d6da9ae0b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3cbe694d235d96f628ec7dc6ae4d8bdddb768699","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65f2c608096d766540953d9b170d216aa3b5eb95","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a118724d7641b832fa14323e2733e28ae4834552","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ba5022162da63059bae36c4fd84d7031f582c71f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da46264a7016034a5bbbad034c012ef218b7d0af","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/efcffd9a6ad8d190651498d5eda53bfc7cf683a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45979","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.023","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: clean up the amdgpu_cs_parser_bos\n\nIn low memory conditions, kmalloc can fail. In such conditions\nunlock the mutex for a clean exit.\n\nWe do not need to amdgpu_bo_list_put as it's been handled in the\namdgpu_cs_parser_fini."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0905a1d4a5500ecf11f1c0079098e3a351d22163","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f025a2b8d93358467b8e8f4b3a617e88c5f02fab","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45980","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.130","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\naccel/amdxdna: Stop job scheduling across aie2_release_resource()\n\nRunning jobs on a hardware context while it is in the process of\nreleasing resources can lead to use-after-free and crashes.\n\nFix this by stopping job scheduling before calling\naie2_release_resource() and restarting it after the release completes.\nAdditionally, aie2_sched_job_run() now checks whether the hardware\ncontext is still active."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/688c3ff079b10e4600f040944430d3d4ff448a15","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b79d31dce49b50c79620389b3639280802a86960","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1370241fe8045702bc9d0812b996791f0500f1b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45981","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.233","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ns390/cio: Fix device lifecycle handling in css_alloc_subchannel()\n\n`css_alloc_subchannel()` calls `device_initialize()` before setting up\nthe DMA masks. If `dma_set_coherent_mask()` or `dma_set_mask()` fails,\nthe error path frees the subchannel structure directly, bypassing\nthe device model reference counting.\n\nOnce `device_initialize()` has been called, the embedded struct device\nmust be released via `put_device()`, allowing the release callback to\nfree the container structure.\n\nFix the error path by dropping the initial device reference with\n`put_device()` instead of calling `kfree()` directly.\n\nThis ensures correct device lifetime handling and avoids potential\nuse-after-free or double-free issues."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2b2ad7ad4a28ffdb9f94e6d979b88a5b12b71681","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6715560527e343a387e4a0d2e6c401748e89fa55","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/abb6e07f46a740cda4f07d1b561ae4eaa7a1df42","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b1d4e6fb241672850296956c4d782a69363a3807","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c35cfbb5341ba05ad1b4476ffc3c21cc3ff8f603","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f65c75b0b9b5a390bc3beadcde0a6fbc3ad118f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f96c5ccf95ae5f27218c1ce2d6a3ad2d3e105424","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fd295a75d828c11acfcc6869c2a12cdaaf9b7722","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45982","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.383","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Fix NULL pointer dereference in acpi_ev_address_space_dispatch()\n\nCover a missed execution path with a new check."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/56024dbe8c76cff22f53ba81a95d9efd4d0c9c44","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7d99cbe717c1b15a66559215df32312d8cf7e525","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b24595b86920911d2b04f862422b896a0620e9ad","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cce354524da4d10fd2c7eb835e2e4e8ab8c0ce97","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f2cf475d23b8486dfa414f7ac09f918ffd3c32a5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f851e03bce968ff9b3faad1b616062e1244fd38d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45983","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.500","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: never defer requests during idmap lookup\n\nDuring v4 request compound arg decoding, some ops (e.g. SETATTR)\ncan trigger idmap lookup upcalls. When those upcall responses get\ndelayed beyond the allowed time limit, cache_check() will mark the\nrequest for deferral and cause it to be dropped.\n\nThis prevents nfs4svc_encode_compoundres from being executed, and\nthus the session slot flag NFSD4_SLOT_INUSE never gets cleared.\nSubsequent client requests will fail with NFSERR_JUKEBOX, given\nthat the slot will be marked as in-use, making the SEQUENCE op\nfail.\n\nFix this by making sure that the RQ_USEDEFERRAL flag is always\nclear during nfs4svc_decode_compoundargs(), since no v4 request\nshould ever be deferred."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/063a6f22478ef929625000a2caf54667725c1dfd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/243f71ed873ff3feeb6f9b5cb145d63f7188b4c4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3a72c7dedc99b321e0f267e4e999e5baf07c4593","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8dff54fe88c0dcd4c55bff9fc2fa6ca968290826","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/99e17b20fddac19a228d213e00f6b9e1c10daff9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b9abb760db20504240a7147f27934d900cd80b23","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d75ec4504a4340b033b15cad0303988b3089dd93","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f9c206cdc4266caad6a9a7f46341420a10f03ccb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45984","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.640","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix use-after-free in iomap inline data write path\n\nThe inline data buffer head (dibh) is being released prematurely in\ngfs2_iomap_begin() via release_metapath() while iomap->inline_data\nstill points to dibh->b_data. This causes a use-after-free when\niomap_write_end_inline() later attempts to write to the inline data\narea.\n\nThe bug sequence:\n1. gfs2_iomap_begin() calls gfs2_meta_inode_buffer() to read inode\n   metadata into dibh\n2. Sets iomap->inline_data = dibh->b_data + sizeof(struct gfs2_dinode)\n3. Calls release_metapath() which calls brelse(dibh), dropping refcount\n   to 0\n4. kswapd reclaims the page (~39ms later in the syzbot report)\n5. iomap_write_end_inline() tries to memcpy() to iomap->inline_data\n6. KASAN detects use-after-free write to freed memory\n\nFix by storing dibh in iomap->private and incrementing its refcount\nwith get_bh() in gfs2_iomap_begin(). The buffer is then properly\nreleased in gfs2_iomap_end() after the inline write completes,\nensuring the page stays alive for the entire iomap operation.\n\nNote: A C reproducer is not available for this issue. The fix is based\non analysis of the KASAN report and code review showing the buffer head\nis freed before use.\n\n[agruenba: Take buffer head reference in gfs2_iomap_begin() to avoid\nleaks in gfs2_iomap_get() and gfs2_iomap_alloc().]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1403989d1b502f4a2c0d0b42ccf1c25748442eff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1cae1bafdf9caa9b462b19af06b1a06902e4e142","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6d76febba07c40bcf358f63216d36ea68cf1c215","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/764c3c84b5683e608f43735c803a5f415046686c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/815ddd27c0c7171a99fe802fdb19098ddef8b19d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/87d4954b5c59735a99ea98cb208d47130f6dce7d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d87268326b277af3665237ac76a73dd9fa8e21b4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/faddeb848305e79db89ee0479bb0e33380656321","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45985","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.820","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O\n\nWhen allocating blocks during within-EOF DIO and writeback with\ndioread_nolock enabled, EXT4_GET_BLOCKS_PRE_IO was set to split an\nexisting large unwritten extent. However, EXT4_GET_BLOCKS_CONVERT was\nset when calling ext4_split_convert_extents(), which may potentially\nresult in stale data issues.\n\nAssume we have an unwritten extent, and then DIO writes the second half.\n\n   [UUUUUUUUUUUUUUUU] on-disk extent        U: unwritten extent\n   [UUUUUUUUUUUUUUUU] extent status tree\n            |<-   ->| ----> dio write this range\n\nFirst, ext4_iomap_alloc() call ext4_map_blocks() with\nEXT4_GET_BLOCKS_PRE_IO, EXT4_GET_BLOCKS_UNWRIT_EXT and\nEXT4_GET_BLOCKS_CREATE flags set. ext4_map_blocks() find this extent and\ncall ext4_split_convert_extents() with EXT4_GET_BLOCKS_CONVERT and the\nabove flags set.\n\nThen, ext4_split_convert_extents() calls ext4_split_extent() with\nEXT4_EXT_MAY_ZEROOUT, EXT4_EXT_MARK_UNWRIT2 and EXT4_EXT_DATA_VALID2\nflags set, and it calls ext4_split_extent_at() to split the second half\nwith EXT4_EXT_DATA_VALID2, EXT4_EXT_MARK_UNWRIT1, EXT4_EXT_MAY_ZEROOUT\nand EXT4_EXT_MARK_UNWRIT2 flags set. However, ext4_split_extent_at()\nfailed to insert extent since a temporary lack -ENOSPC. It zeroes out\nthe first half but convert the entire on-disk extent to written since\nthe EXT4_EXT_DATA_VALID2 flag set, but left the second half as unwritten\nin the extent status tree.\n\n   [0000000000SSSSSS]  data                S: stale data, 0: zeroed\n   [WWWWWWWWWWWWWWWW]  on-disk extent      W: written extent\n   [WWWWWWWWWWUUUUUU]  extent status tree\n\nFinally, if the DIO failed to write data to the disk, the stale data in\nthe second half will be exposed once the cached extent entry is gone.\n\nFix this issue by not passing EXT4_GET_BLOCKS_CONVERT when splitting\nan unwritten extent before submitting I/O, and make\next4_split_convert_extents() to zero out the entire extent range\nto zero for this case, and also mark the extent in the extent status\ntree for consistency."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2698731d25823267c29190cb578da9296a0c0d7b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2920ec61c98b9476781359f05b94da84e80f54d4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/37555690f39f78ef69af347d9aff897e07445949","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/67cdb7bd7442bd3cdc6d6088bbb2df9be2fe936c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/716e7439a5a9b18c3ff882c2f8c834b9ced1aaec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/77e407967cd872cd75d7e4a691908e49c8e6b4d4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/feaf2a80e78f89ee8a3464126077ba8683b62791","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45986","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:15.963","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccree - fix a memory leak in cc_mac_digest()\n\nAdd cc_unmap_result() if cc_map_hash_request_final()\nfails to prevent potential memory leak."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/02c64052fad03699b9c6d1df2f9b444d17e4ac50","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/22f1dd4ca3bfe77db52cc7df3cc353dc114aab8b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3061c9bfb3f5b3522ab174e2fa7473b24422d1c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/502440c235fe34cee02b24d7f893841f7565b3bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/910f335786a0a0f0b46c3c8c19a13d25cb4454b6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45987","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.113","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Sync interrupt shadow to cached vmcb12 after VMRUN of L2\n\nAfter VMRUN in guest mode, nested_sync_control_from_vmcb02() syncs\nfields written by the CPU from vmcb02 to the cached vmcb12. This is\nbecause the cached vmcb12 is used as the authoritative copy of some of\nthe controls, and is the payload when saving/restoring nested state.\n\nint_state is also written by the CPU, specifically bit 0 (i.e.\nSVM_INTERRUPT_SHADOW_MASK) for nested VMs, but it is not sync'd to\ncached vmcb12. This does not cause a problem if KVM_SET_NESTED_STATE\npreceeds KVM_SET_VCPU_EVENTS in the restore path, as an interrupt shadow\nwould be correctly restored to vmcb02 (KVM_SET_VCPU_EVENTS overwrites\nwhat KVM_SET_NESTED_STATE restored in int_state).\n\nHowever, if KVM_SET_VCPU_EVENTS preceeds KVM_SET_NESTED_STATE, an\ninterrupt shadow would be restored into vmcb01 instead of vmcb02. This\nwould mostly be benign for L1 (delays an interrupt), but not for L2. For\nL2, the vCPU could hang (e.g. if a wakeup interrupt is delivered before\na HLT that should have been in an interrupt shadow).\n\nSync int_state to the cached vmcb12 in nested_sync_control_from_vmcb02()\nto avoid this problem. With that, KVM_SET_NESTED_STATE restores the\ncorrect interrupt shadow state, and if KVM_SET_VCPU_EVENTS follows it\nwould overwrite it with the same value."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/03bee264f8ebfd39e0254c98e112d033a7aa9055","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1709418535a8df95532999d61b03d59975280258","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2f950eeb27af6885416232761700b8820cae0a61","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/497f6af9679fc9c6ce2f438e11ed5d51b1aa8297","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e0377e52f3c10ee572732d11b04625b7f517a862","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45988","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.270","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix re-decryption of RESPONSE packets\n\nIf a RESPONSE packet gets a temporary failure during processing, it may end\nup in a partially decrypted state - and then get requeued for a retry.\n\nFix this by just discarding the packet; we will send another CHALLENGE\npacket and thereby elicit a further response.  Similarly, discard an\nincoming CHALLENGE packet if we get an error whilst generating a RESPONSE;\nthe server will send another CHALLENGE."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0422e7a4883f25101903f3e8105c0808aa5f4ce9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/76cb9a2d252274adfae6e293a292434631a7d472","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7b89868305052b94a91b708c462bc2281fa42a4a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d61482be4aae1835b78875761206241835a7510e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f55b383070170e988e4dec28be2af1714d258521","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45989","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.413","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nof: unittest: fix use-after-free in testdrv_probe()\n\nThe function testdrv_probe() retrieves the device_node from the PCI\ndevice, applies an overlay, and then immediately calls of_node_put(dn).\nThis releases the reference held by the PCI core, potentially freeing\nthe node if the reference count drops to zero. Later, the same freed\npointer 'dn' is passed to of_platform_default_populate(), leading to a\nuse-after-free.\n\nThe reference to pdev->dev.of_node is owned by the device model and\nshould not be released by the driver. Remove the erroneous of_node_put()\nto prevent premature freeing."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/07fd339b2c253205794bea5d9b4b7548a4546c56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0ba03e06f037df704d9b032e36d417633e2326bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5b6122a67a295f8a08b7c18d908a1bd974dfaec8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6b2023286d2c6ed3bf964fb92e34c9c14d42eb69","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d68347b07b9801791c9eaab8f772770b52b8cd5c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45990","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.527","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nslub: fix data loss and overflow in krealloc()\n\nCommit 2cd8231796b5 (\"mm/slub: allow to set node and align in\nk[v]realloc\") introduced the ability to force a reallocation if the\noriginal object does not satisfy new alignment or NUMA node, even when\nthe object is being shrunk.\n\nThis introduced two bugs in the reallocation fallback path:\n\n1. Data loss during NUMA migration: The jump to 'alloc_new' happens\n   before 'ks' and 'orig_size' are initialized. As a result, the\n   memcpy() in the 'alloc_new' block would copy 0 bytes into the new\n   allocation.\n\n2. Buffer overflow during shrinking: When shrinking an object while\n   forcing a new alignment, 'new_size' is smaller than the old size.\n   However, the memcpy() used the old size ('orig_size ?: ks'), leading\n   to an out-of-bounds write.\n\nThe same overflow bug exists in the kvrealloc() fallback path, where the\nold bucket size ksize(p) is copied into the new buffer without being\nbounded by the new size.\n\nA simple reproducer:\n\n\t// e.g. add to lkdtm as KREALLOC_SHRINK_OVERFLOW\n\twhile (1) {\n\t\tvoid *p = kmalloc(128, GFP_KERNEL);\n\t\tp = krealloc_node_align(p, 64, 256, GFP_KERNEL, NUMA_NO_NODE);\n\t\tkfree(p);\n\t}\n\ndemonstrates the issue:\n\n  ==================================================================\n  BUG: KFENCE: out-of-bounds write in memcpy_orig+0x68/0x130\n\n  Out-of-bounds write at 0xffff8883ad757038 (120B right of kfence-#47):\n   memcpy_orig+0x68/0x130\n   krealloc_node_align_noprof+0x1c8/0x340\n   lkdtm_KREALLOC_SHRINK_OVERFLOW+0x8c/0xc0 [lkdtm]\n   lkdtm_do_action+0x3a/0x60 [lkdtm]\n   ...\n\n  kfence-#47: 0xffff8883ad756fc0-0xffff8883ad756fff, size=64, cache=kmalloc-64\n\n  allocated by task 316 on cpu 7 at 97.680481s (0.021813s ago):\n   krealloc_node_align_noprof+0x19c/0x340\n   lkdtm_KREALLOC_SHRINK_OVERFLOW+0x8c/0xc0 [lkdtm]\n   lkdtm_do_action+0x3a/0x60 [lkdtm]\n   ...\n  ==================================================================\n\nFix it by moving the old size calculation to the top of __do_krealloc()\nand bounding all copy lengths by the new allocation size."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/082a6d03a2d685a83a332666b500ad3966349588","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/38387ccc0fbe38d14fb4c2ad7ee1d7404e5e59fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/550fa6b5aabb096554536ac1e3ec96b76cbb35fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45991","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.643","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nudf: fix partition descriptor append bookkeeping\n\nMounting a crafted UDF image with repeated partition descriptors can\ntrigger a heap out-of-bounds write in part_descs_loc[].\n\nhandle_partition_descriptor() deduplicates entries by partition number,\nbut appended slots never record partnum. As a result duplicate\nPartition Descriptors are appended repeatedly and num_part_descs keeps\ngrowing.\n\nOnce the table is full, the growth path still sizes the allocation from\npartnum even though inserts are indexed by num_part_descs. If partnum is\nalready aligned to PART_DESC_ALLOC_STEP, ALIGN(partnum, step) can keep\nthe old capacity and the next append writes past the end of the table.\n\nStore partnum in the appended slot and size growth from the next append\ncount so deduplication and capacity tracking follow the same model."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/058b451b1039f056d1362c4fec2229e522366ab0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/08841b06fa64d8edbd1a21ca6e613420c90cc4b8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/08fa5d818e5bf53c7ca234d88ba334f32004e9b6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b5597bb83fc37b5b5da74a4453fa920b932cf39a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45992","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.747","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Fix potentially leftover ep1_in_urb at error path\n\nThe previous fix for handling the error from setup_card() missed that\nan internal URB cdev->ep1_in_urb might have been already submitted\nbeforehand.  In the normal case, this URB gets killed at the\ndisconnection, but in the error path, we didn't do it, hence there can\nbe a potential leak.\n\nFix it in the error path for setup_card(), too."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0a7b5221b5b51cc798fcfc3be00d02eade149d69","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1d160e30aa42b7c41163e51366bb34432367260d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/438ab932dc6fef5b001dfeba08a18a491edc8f7b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/be62c8bb03b6aec3790a943d4a7567d4d73b8be9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e0fb842af7052f0ab9e709db0c59300aa4051fc0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45993","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.853","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Add spectre boundry for syscall dispatch table\n\nThe LoongArch syscall number is directly controlled by userspace, but\ndoes not have a array_index_nospec() boundry to prevent access past the\nsyscall function pointer tables."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/07040904ad217545be096d4280ed33c02f6a3750","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0c965d2784fbbd7f8e3b96d875c9cfdf7c00da3d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/108f2cd13577a410c0ad6ea00708596d9d0dfc90","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/85cbf7fb568af5358aae61925c4e66b8f5e1439d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bc84a109c2082dd0c4b38e8d923c046b41977533","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45994","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:16.970","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nibmasm: fix OOB reads in command_file_write due to missing size checks\n\nThe command_file_write() handler allocates a kernel buffer of exactly\ncount bytes and copies user data into it, but does not validate the\nbuffer against the dot command protocol before passing it to\nget_dot_command_size() and get_dot_command_timeout().\n\nSince both the allocation size (count) and the header fields (command_size,\ndata_size) are independently user-controlled, an attacker can cause\nget_dot_command_size() to return a value exceeding the allocation,\ntriggering OOB reads in get_dot_command_timeout() and an out-of-bounds\nmemcpy_toio() that leaks kernel heap memory to the service processor.\n\nFix with two guards: reject writes smaller than sizeof(struct\ndot_command_header) before allocation, then after copying user data\nreject commands where the buffer is smaller than the total size declared\nby the header (sizeof(header) + command_size + data_size). This ensures\nall subsequent header and payload field accesses stay within the buffer."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0eb09f737428e482a32a2e31e5e223f2b35a71d3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a672682d39dd34e2b5ba4feb436723bed65125ff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/aefc1a97da17d8309974690c8a03e439a91ebb1c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d0fb4d1dc43f8d5179917a2daaa82680993d4cdf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee5737891464030a189837467df3b81a273718ad","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45995","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.080","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/zcrx: fix user_struct uaf\n\nio_free_rbuf_ring() usees a struct user_struct, which\nio_zcrx_ifq_free() puts it down before destroying the ring."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0fcccfd87152f957fa8312b841f6efef42a05a20","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9feb88eeda6d288f93fcfb6bca563f89e316479d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45996","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.180","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: imx: fix use-after-free on unbind\n\nThe SPI subsystem frees the controller and any subsystem allocated\ndriver data as part of deregistration (unless the allocation is device\nmanaged).\n\nTake another reference before deregistering the controller so that the\ndriver data is not freed until the driver is done with it."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/132e47030b0b5e398e0da6c59df5a5dae9b52cff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1c78c2002380a1fe31bfb01a3d5f29809e55a096","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/385a330083f8dd47c15b02e9a83aef9234a37003","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/aa9025a498036b6012769f7af36d421385386c17","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f99165ef067723221472ce1aff632bc74f562643","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45997","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.280","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sd: fix missing put_disk() when device_add(&disk_dev) fails\n\nIf device_add(&sdkp->disk_dev) fails, put_device() runs\nscsi_disk_release(), which frees the scsi_disk but leaves the gendisk\nreferenced. The device_add_disk() error path in sd_probe() calls\nput_disk(gd); call put_disk(gd) here to mirror that cleanup."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/13e550fbfccdb311e76ec96892dfe35f0dba0657","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1e111c4b3a726df1254670a5cc4868cedb946d37","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/262152ec37101f9dc524743ccdbd6c7641d14573","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a95d38c5701431bfc826e7b18acc0785919d5c88","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b64b4f499801b12d0e2785447e4df6c164c608a9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45998","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.407","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix potential UAF after skb_unshare() failure\n\nIf skb_unshare() fails to unshare a packet due to allocation failure in\nrxrpc_input_packet(), the skb pointer in the parent (rxrpc_io_thread())\nwill be NULL'd out.  This will likely cause the call to\ntrace_rxrpc_rx_done() to oops.\n\nFix this by moving the unsharing down to where rxrpc_input_call_event()\ncalls rxrpc_input_call_packet().  There are a number of places prior to\nthat where we ignore DATA packets for a variety of reasons (such as the\ncall already being complete) for which an unshare is then avoided.\n\nAnd with that, rxrpc_input_packet() doesn't need to take a pointer to the\npointer to the packet, so change that to just a pointer."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1f2740150f904bfa60e4bad74d65add3ccb5e7f8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8fde6296c4d4da2be7ab761305ab7f232b94eefd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/996b0487b3cdda4c91811dbb1c9564626bc840bd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bf20f46d94f1db38e6ffc0ca204a5fe0de01b495","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e3bf143b1e98fb3d6d9e6825bcd683974d478e8c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-45999","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.517","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: fix unsigned underflow in z_erofs_lz4_handle_overlap()\n\nSome crafted images can have illegal (!partial_decoding &&\nm_llen < m_plen) extents, and the LZ4 inplace decompression path\ncan be wrongly hit, but it cannot handle (outpages < inpages)\nproperly: \"outpages - inpages\" wraps to a large value and\nthe subsequent rq->out[] access reads past the decompressed_pages\narray.\n\nHowever, such crafted cases can correctly result in a corruption\nreport in the normal LZ4 non-inplace path.\n\nLet's add an additional check to fix this for backporting.\n\nReproducible image (base64-encoded gzipped blob):\n\nH4sIAJGR12kCA+3SPUoDQRgG4MkmkkZk8QRbRFIIi9hbpEjrHQI5ghfwCN5BLCzTGtLbBI+g\ndilSJo1CnIm7GEXFxhT6PDDwfrs73/ywIQD/1ePD4r7Ou6ETsrq4mu7XcWfj++Pb58nJU/9i\nPNtbjhan04/9GtX4qVYc814WDqt6FaX5s+ZwXXeq52lndT6IuVvlblytLMvh4Gzwaf90nsvz\n2DF/21+20T/ldgp5s1jXRaN4t/8izsy/OUB6e/Qa79r+JwAAAAAAAL52vQVuGQAAAP6+my1w\nywAAAAAAAADwu14ATsEYtgBQAAA=\n\n$ mount -t erofs -o cache_strategy=disabled foo.erofs /mnt\n$ dd if=/mnt/data of=/dev/null bs=4096 count=1"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/21e161de2dc660b1bb70ef5b156ab8e6e1cca3ab","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/43a878639b90e9721ffa5eb616a7e6d8454adef3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bbbbb3f0d7864238a8da2a94cd6ec013fee06a2e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c9ce18e6bb2c467ec85756dc7989b547b7584fee","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1374fa6e57fd836623668d782ded9244cfd2938","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46000","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.640","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix conn-level packet handling to unshare RESPONSE packets\n\nThe security operations that verify the RESPONSE packets decrypt bits of it\nin place - however, the sk_buff may be shared with a packet sniffer, which\nwould lead to the sniffer seeing an apparently corrupt packet (actually\ndecrypted).\n\nFix this by handing a copy of the packet off to the specific security\nhandler if the packet was cloned."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/24481a7f573305706054c59e275371f8d0fe919f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/98a2046d155f73f6cf5d2c493c5e09b4963e2e12","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c0428a22daf69714dc042b67ea759956b74c74e5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca71ac2de389b01eecdc48bfafbdf073ec232044","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d9b93a0f57ca5f6831bfaa34014b6cd705564a00","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46001","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.760","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (pt5161l) Fix bugs in pt5161l_read_block_data()\n\nFix two bugs in pt5161l_read_block_data():\n\n1. Buffer overrun: The local buffer rbuf is declared as u8 rbuf[24],\n   but i2c_smbus_read_block_data() can return up to\n   I2C_SMBUS_BLOCK_MAX (32) bytes. The i2c-core copies the data into\n   the caller's buffer before the return value can be checked, so\n   the post-read length validation does not prevent a stack overrun\n   if a device returns more than 24 bytes. Resize the buffer to\n   I2C_SMBUS_BLOCK_MAX.\n\n2. Unexpected positive return on length mismatch: When all three\n   retries are exhausted because the device returns data with an\n   unexpected length, i2c_smbus_read_block_data() returns a positive\n   byte count. The function returns this directly, and callers treat\n   any non-negative return as success, processing stale or incomplete\n   buffer contents. Return -EIO when retries are exhausted with a\n   positive return value, preserving the negative error code on I2C\n   failure."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/24c73e93d6a756e1b8626bb259d2e07c5b89b370","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7eccabff1c9ec15e4b6fe186d5c147b13a9cdb4e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/95d48e37a1304d6148406c799479c0fb505aefa7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a11aa9c5fd9dfe62be7cfec1f2a7546afb77254c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46002","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:17.880","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next2: reject inodes with zero i_nlink and valid mode in ext2_iget()\n\next2_iget() already rejects inodes with i_nlink == 0 when i_mode is\nzero or i_dtime is set, treating them as deleted. However, the case of\ni_nlink == 0 with a non-zero mode and zero dtime slips through. Since\next2 has no orphan list, such a combination can only result from\nfilesystem corruption - a legitimate inode deletion always sets either\ni_dtime or clears i_mode before freeing the inode.\n\nA crafted image can exploit this gap to present such an inode to the\nVFS, which then triggers WARN_ON inside drop_nlink() (fs/inode.c) via\next2_unlink(), ext2_rename() and ext2_rmdir():\n\nWARNING: CPU: 3 PID: 609 at fs/inode.c:336 drop_nlink+0xad/0xd0 fs/inode.c:336\nCPU: 3 UID: 0 PID: 609 Comm: syz-executor Not tainted 6.12.77+ #1\nCall Trace:\n <TASK>\n inode_dec_link_count include/linux/fs.h:2518 [inline]\n ext2_unlink+0x26c/0x300 fs/ext2/namei.c:295\n vfs_unlink+0x2fc/0x9b0 fs/namei.c:4477\n do_unlinkat+0x53e/0x730 fs/namei.c:4541\n __x64_sys_unlink+0xc6/0x110 fs/namei.c:4587\n do_syscall_64+0xf5/0x220 arch/x86/entry/common.c:78\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n </TASK>\n\nWARNING: CPU: 0 PID: 646 at fs/inode.c:336 drop_nlink+0xad/0xd0 fs/inode.c:336\nCPU: 0 UID: 0 PID: 646 Comm: syz.0.17 Not tainted 6.12.77+ #1\nCall Trace:\n <TASK>\n inode_dec_link_count include/linux/fs.h:2518 [inline]\n ext2_rename+0x35e/0x850 fs/ext2/namei.c:374\n vfs_rename+0xf2f/0x2060 fs/namei.c:5021\n do_renameat2+0xbe2/0xd50 fs/namei.c:5178\n __x64_sys_rename+0x7e/0xa0 fs/namei.c:5223\n do_syscall_64+0xf5/0x220 arch/x86/entry/common.c:78\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n </TASK>\n\nWARNING: CPU: 0 PID: 634 at fs/inode.c:336 drop_nlink+0xad/0xd0 fs/inode.c:336\nCPU: 0 UID: 0 PID: 634 Comm: syz-executor Not tainted 6.12.77+ #1\nCall Trace:\n <TASK>\n inode_dec_link_count include/linux/fs.h:2518 [inline]\n ext2_rmdir+0xca/0x110 fs/ext2/namei.c:311\n vfs_rmdir+0x204/0x690 fs/namei.c:4348\n do_rmdir+0x372/0x3e0 fs/namei.c:4407\n __x64_sys_unlinkat+0xf0/0x130 fs/namei.c:4577\n do_syscall_64+0xf5/0x220 arch/x86/entry/common.c:78\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n </TASK>\n\nExtend the existing i_nlink == 0 check to also catch this case,\nreporting the corruption via ext2_error() and returning -EFSCORRUPTED.\nThis rejects the inode at load time and prevents it from reaching any\nof the namei.c paths.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/25947cc5b2374cd5bf627fe3141496444260d04f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2dde6377ab2e46bb80cf066c659ef016f3ad7a9b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/32e0b925572686399243834ec99e2a9d85c62eae","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/470264bbec499e276a89a6431144ae58f411ea4d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d3af04a43db86379df7438bf8bade71685b8a239","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46003","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.010","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: ns: Limit the total number of nodes\n\nCurrently, the nameserver doesn't limit the number of nodes it handles.\nThis can be an attack vector if a malicious client starts registering\nrandom nodes, leading to memory exhaustion.\n\nHence, limit the maximum number of nodes to 64. Note that, limit of 64 is\nchosen based on the current platform requirements. If requirement changes\nin the future, this limit can be increased."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/27d5e84e810b0849d08b9aec68e48570461ce313","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4665a29c08e1b36bc9db4814f9dde3d23e8fd1b0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c46413661431aa60fb134cd4ecdf8beaa39f824","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5cf6d5e5e3b804a44692fbf548a5179442e2e923","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8022876894d09ae485b499058c3357da683bcc5d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46004","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.120","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: Handle probe errors properly\n\nThe probe procedure of setup_card() in caiaq driver doesn't treat the\nerror cases gracefully, e.g. the error from snd_card_register() calls\nsnd_card_free() but continues.  This would lead to a UAF for the\nfurther calls like snd_usb_caiaq_control_init(), as Berk suggested in\nanother patch in the link below.\n\nHowever, the problem is not only that; in general, this function drops\nthe all error handlings (as it's a void function) although its caller\ncan propagate an error to snd_probe(), which eventually calls\nsnd_card_free() as a proper error path.  That said, we should treat\neach error case in setup_card(), and just return the error code\npromptly, which is then handled later as a fatal error in snd_probe().\n\nThis patch achieves it by changing the setup_card() to return an error\ncode.  Also, the superfluous snd_card_free() call is removed, too.\n\nNote that card->private_free can be set still safely at returning an\nerror.  All called functions in card_free() have checks of the\nunassigned resources or NULL checks."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/096dd8519cf2f768e9e14f224b627f7aaee1a9c5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/28abd224db4a49560b452115bca3672a20e45b2f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6251e3e256337a30160ef59ab1580dde4d1acd28","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e59ecd4ee3a450db6cb4e4ecaa3efdd593f80056","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f537e3ad69609f6924a4db6b4a7f6561f5288bdd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46005","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.240","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a resource leak in xfs_alloc_buftarg()\n\nIn the error path, call fs_put_dax() to drop the DAX\ndevice reference."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/28a6c132b8c6e5eeefa889c4fb43d65b12989d48","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/29a7b2614357393b176ef06ba5bc3ff5afc8df69","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5804cb507233ed767a83ac70527b2f6c4566ec75","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5c293a1e1ef0f838772d20ae8afae4cbd87cd3f9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/82fb9da6477d08bdab954dc7bc081a41f2f9cae6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46006","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.353","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau: fix u32 overflow in pushbuf reloc bounds check\n\nnouveau_gem_pushbuf_reloc_apply() validates each relocation with\n\n    if (r->reloc_bo_offset + 4 > nvbo->bo.base.size)\n\nbut reloc_bo_offset is __u32 (uapi/drm/nouveau_drm.h) and the integer\nliteral 4 promotes to unsigned int, so the addition is performed in 32\nbits and wraps before the comparison against the size_t bo size.\n\nCast to u64 so the addition happens in 64-bit arithmetic.\n\n[ Add Fixes: tag. - Danilo ]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2fc87d37be1b730a149b035f9375fdb8cc5333a5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/332884f5eb79dd60a7162b079d09d39208567a31","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d749a9a0ee4014681487e7ae549901aa8c176637","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e441d5c23ec644c8d27593db3b8928e8933512a9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fa297e919d1680c38ab268ff952b1698dac987f6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46007","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.470","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (powerz) Avoid cacheline sharing for DMA buffer\n\nDepending on the architecture the transfer buffer may share a cacheline\nwith the following mutex. As the buffer may be used for DMA, that is\nproblematic.\n\nUse the high-level DMA helpers to make sure that cacheline sharing can\nnot happen.\n\nAlso drop the comment, as the helpers are documentation enough.\n\nhttps://sashiko.dev/#/message/20260408175814.934BFC19421%40smtp.kernel.org"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1869da3efe703b016b23d4885f3fe6c1751959c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/270e5c576a6e30f6b337fa91d35b44c241297533","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2fa2273016a0483217404cfe330967c4ac6832a9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3023c050af3600bf451153335dea5e073c9a3088","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46008","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.600","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/core: fix damos_walk() vs kdamond_fn() exit race\n\nWhen kdamond_fn() main loop is finished, the function cancels remaining\ndamos_walk() request and unset the damon_ctx->kdamond so that API callers\nand API functions themselves can show the context is terminated. \ndamos_walk() adds the caller's request to the queue first.  After that, it\nshows if the kdamond of the damon_ctx is still running (damon_ctx->kdamond\nis set).  Only if the kdamond is running, damos_walk() starts waiting for\nthe kdamond's handling of the newly added request.\n\nThe damos_walk() requests registration and damon_ctx->kdamond unset are\nprotected by different mutexes, though.  Hence, damos_walk() could race\nwith damon_ctx->kdamond unset, and result in deadlocks.\n\nFor example, let's suppose kdamond successfully finished the damow_walk()\nrequest cancelling.  Right after that, damos_walk() is called for the\ncontext.  It registers the new request, and shows the context is still\nrunning, because damon_ctx->kdamond unset is not yet done.  Hence the\ndamos_walk() caller starts waiting for the handling of the request. \nHowever, the kdamond is already on the termination steps, so it never\nhandles the new request.  As a result, the damos_walk() caller thread\ninfinitely waits.\n\nFix this by introducing another damon_ctx field, namely\nwalk_control_obsolete.  It is protected by the\ndamon_ctx->walk_control_lock, which protects damos_walk() request\nregistration.  Initialize (unset) it in kdamond_fn() before letting\ndamon_start() returns and set it just before the cancelling of the\nremaining damos_walk() request is executed.  damos_walk() reads the\nobsolete field under the lock and avoids adding a new request.\n\nAfter this change, only requests that are guaranteed to be handled or\ncancelled are registered.  Hence the after-registration DAMON context\ntermination check is no longer needed.  Remove it together.\n\nThe issue is found by sashiko [1]."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0ba956a239ba6e3fae8555d3660e22e675be63b5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/33c3f6c2b48cd84b441dba1ee3e62290e53930f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46009","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.710","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown\n\nepf_ntb_epc_destroy() duplicates the teardown that the caller is\nsupposed to do later. This leads to an oops when .allow_link fails or\nwhen .drop_link is performed. Remove the helper.\n\nAlso drop pci_epc_put(). EPC device refcounting is tied to configfs EPC\ngroup lifetime, and pci_epc_put() in the .drop_link path is sufficient."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3446beddba450c8d6f9aca2f028712ac527fead3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65fc57c8b8f0b31be62be291cb1bb01755cec85d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/72099f015d3c77bf2eb703d1aab113bd7a60915a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/756ca5e7ed22d9045bb4de4c981f9149278d5cd3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e813c95e4c8edd31599081e6356e20ada30e266d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46010","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:18.960","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix error handling in rxgk_extract_token()\n\nFix a missing bit of error handling in rxgk_extract_token(): in the event\nthat rxgk_decrypt_skb() returns -ENOMEM, it should just return that rather\nthan continuing on (for anything else, it generates an abort)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/293095ef618818852bac5488c1bc223935e2ca17","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3476c8bb960f48e49355d6f93fb7673211e0163f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c52803e925604e2a17962ab0c99dce2d3f7238db","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46011","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:19.250","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mtk-jpeg: fix use-after-free in release path due to uncancelled work\n\nThe mtk_jpeg_release() function frees the context structure (ctx) without\nfirst cancelling any pending or running work in ctx->jpeg_work. This\ncreates a race window where the workqueue callback may still be accessing\nthe context memory after it has been freed.\n\nRace condition:\n\n    CPU 0 (release)                    CPU 1 (workqueue)\n    ----------------                   ------------------\n    close()\n      mtk_jpeg_release()\n                                       mtk_jpegenc_worker()\n                                         ctx = work->data\n                                         // accessing ctx\n\n        kfree(ctx)  // freed!\n                                         access ctx  // UAF!\n\nThe work is queued via queue_work() during JPEG encode/decode operations\n(via mtk_jpeg_device_run). If the device is closed while work is pending\nor running, the work handler will access freed memory.\n\nFix this by calling cancel_work_sync() BEFORE acquiring the mutex. This\nordering is critical: if cancel_work_sync() is called after mutex_lock(),\nand the work handler also tries to acquire the same mutex, it would cause\na deadlock.\n\nNote: The open error path does NOT need cancel_work_sync() because\nINIT_WORK() only initializes the work structure - it does not schedule\nit. Work is only scheduled later during ioctl operations."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0498b27a1542021d90269d58347501d4c3ccd84e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2209fdae5c2f615930c9af1379c1cfca199ec5d8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/26506a30e0e26d612f82a7bf0e395626968a44e6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/34c519feef3e4fcff1078dc8bdb25fbbbd10303f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e78c39f720679fcf3a2eacd82725ec3ea2648301","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46012","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:19.387","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix memory leaks in rxkad_verify_response()\n\nFix rxkad_verify_response() to free the ticket and the server key under all\ncircumstances by initialising the ticket pointer to NULL and then making\nall paths through the function after the first allocation has been done go\nthrough a single common epilogue that just releases everything - where all\nthe releases skip on a NULL pointer."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/34f61a07e0cdefaecd3ec03bb5fb22215643678f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/852b9d64cea421336579b2de3d1338dfa677e2dd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/861b9a0a1823bf064a7b810d29502a9ef043f40f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c4b8f32e73eafd4a5076be890c7c8506ec04567c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c91f33fb8356dedc82bc56ce210f1a5dbee62a52","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46013","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:19.517","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/memfd_luo: fix physical address conversion in put_folios cleanup\n\nIn memfd_luo_retrieve_folios()'s put_folios cleanup path:\n\n1. kho_restore_folio() expects a phys_addr_t (physical address) but\n   receives a raw PFN (pfolio->pfn). This causes kho_restore_page() to\n   check the wrong physical address (pfn << PAGE_SHIFT instead of the\n   actual physical address).\n\n2. This loop lacks the !pfolio->pfn check that exists in the main\n   retrieval loop and memfd_luo_discard_folios(), which could\n   incorrectly process sparse file holes where pfn=0.\n\nFix by converting PFN to physical address with PFN_PHYS() and adding\nthe !pfolio->pfn check, matching the pattern used elsewhere in this file.\n\nThis issue was identified by the AI review.\nhttps://sashiko.dev/#/patchset/20260323110747.193569-1-duanchenghao@kylinos.cn"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3538f90ab89aaf302782b4b073a0aae66904cd67","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bd0d6bde286a2b8e3ae7975b0dcc2d43875d5fc9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46014","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:19.667","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Add missing save/restore handling of LBR MSRs\n\nMSR_IA32_DEBUGCTLMSR and LBR MSRs are currently not enumerated by\nKVM_GET_MSR_INDEX_LIST, and LBR MSRs cannot be set with KVM_SET_MSRS. So\nsave/restore is completely broken.\n\nFix it by adding the MSRs to msrs_to_save_base, and allowing writes to\nLBR MSRs from userspace only (as they are read-only MSRs) if LBR\nvirtualization is enabled.  Additionally, to correctly restore L1's LBRs\nwhile L2 is running, make sure the LBRs are copied from the captured\nVMCB01 save area in svm_copy_vmrun_state().\n\nNote, for VMX, this also fixes a flaw where MSR_IA32_DEBUGCTLMSR isn't\nreported as an MSR to save/restore.\n\nNote #2, over-reporting MSR_IA32_LASTxxx on Intel is ok, as KVM already\nhandles unsupported reads and writes thanks to commit b5e2fec0ebc3 (\"KVM:\nIgnore DEBUGCTL MSRs with no effect\") (kvm_do_msr_access() will morph the\nunsupported userspace write into a nop).\n\n[sean: guard with lbrv checks, massage changelog]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/13a89ada5dcfc2539514c83ba5a2c61157f1ec6c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2b922a42b531a82d7881add14a7698dcdc5e1f0a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3700f0788da6acf73b2df56690f4b201aa4aefd2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46015","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:19.840","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: call sk_data_ready() after listener migration\n\nWhen inet_csk_listen_stop() migrates an established child socket from\na closing listener to another socket in the same SO_REUSEPORT group,\nthe target listener gets a new accept-queue entry via\ninet_csk_reqsk_queue_add(), but that path never notifies the target\nlistener's waiters. A nonblocking accept() still works because it\nchecks the queue directly, but poll()/epoll_wait() waiters and\nblocking accept() callers can also remain asleep indefinitely.\n\nCall READ_ONCE(nsk->sk_data_ready)(nsk) after a successful migration\nin inet_csk_listen_stop().\n\nHowever, after inet_csk_reqsk_queue_add() succeeds, the ref acquired\nin reuseport_migrate_sock() is effectively transferred to\nnreq->rsk_listener. Another CPU can then dequeue nreq via accept()\nor listener shutdown, hit reqsk_put(), and drop that listener ref.\nSince listeners are SOCK_RCU_FREE, wrap the post-queue_add()\ndereferences of nsk in rcu_read_lock()/rcu_read_unlock(), which also\ncovers the existing sock_net(nsk) access in that path.\n\nThe reqsk_timer_handler() path does not need the same changes for two\nreasons: half-open requests become readable only after the final ACK,\nwhere tcp_child_process() already wakes the listener; and once nreq is\nvisible via inet_ehash_insert(), the success path no longer touches\nnsk directly."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/12625b4da84caf4d84a04988710a7b9bcf702b18","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3864c6ba1e041bc75342353a70fa2a2c6f909923","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83bb57635d7cbafde32f865b577ecfd969f02337","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ab5fdcd535645f6dbe6e9e21d96a08d141e88b4b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bebd058ef40c67a81fe6d9ee8beaa4ede90e0704","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46016","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.010","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: xlnx: Only access buffer information if IPI is buffered\n\nIn the receive callback check if message is NULL to prevent\npossibility of crash by NULL pointer dereferencing."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/06d0bed2552fd0dae27d374d4492a2b672e24eed","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/38dd6ccfdfbbe865569a52fe1ba9fa1478f672e6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5d1451cb2cf6f3d9884d76035a1460aa9bb4b053","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7ddbf21116770b7011f2bb0a6056b7604b24c497","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8242579859a78c801bb626e9aa4823aca93e28e7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46017","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.133","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm: fix deferred split queue races during migration\n\nmigrate_folio_move() records the deferred split queue state from src and\nreplays it on dst.  Replaying it after remove_migration_ptes(src, dst, 0)\nmakes dst visible before it is requeued, so a concurrent rmap-removal path\ncan mark dst partially mapped and trip the WARN in deferred_split_folio().\n\nMove the requeue before remove_migration_ptes() so dst is back on the\ndeferred split queue before it becomes visible again.\n\nBecause migration still holds dst locked at that point, teach\ndeferred_split_scan() to requeue a folio when folio_trylock() fails. \nOtherwise a fully mapped underused folio can be dequeued by the shrinker\nand silently lost from split_queue.\n\n[ziy@nvidia.com: move the comment]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3bac01168982ec3e3bf87efdc1807c7933590a85","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cbf75cf212ee6e499abc1757fb4b5ae6d70ed0aa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46018","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.240","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES\n\nparse_uac2_sample_rate_range() caps the number of enumerated\nrates at MAX_NR_RATES, but it only breaks out of the current\nrate loop. A malformed UAC2 RANGE response with additional\ntriplets continues parsing the remaining triplets and repeatedly\nprints \"invalid uac2 rates\" while probe still holds\nregister_mutex.\n\nStop the whole parse once the cap is reached and return the\nnumber of rates collected so far."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3c318f97dcc50b2e0556a1813bd6958678e881fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4d7893a137eadb6163ea4298bf67d74b811d76ef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0b78639ef09b2e77974a3de3b1c07f6de3c5e56","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ab5ba9fd138758ddc50222264ff246b31e397abf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ba036305323814ec1f8655313b2fa6a0f7048716","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46019","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.353","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup\n\natmel_aes_buff_init() allocates 4 pages using __get_free_pages() with\nATMEL_AES_BUFFER_ORDER, but atmel_aes_buff_cleanup() frees only the\nfirst page using free_page(), leaking the remaining 3 pages. Use\nfree_pages() with ATMEL_AES_BUFFER_ORDER to fix the memory leak."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/230ad8a78fe67266b1ba4685da1abdd61471c5b8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3fcfff4ed35f963380a68741bcd52742baff7f76","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/61516b4a5b2647dc3f8f67b5dffaf038be997511","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65b3589d39d05699c3850202f8333e5361033ea3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b63f1e2f0e319ad3fe4a58eb3db4fd50cc98baca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46020","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.460","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/core: validate damos_quota_goal->nid for node_mem_{used,free}_bp\n\nPatch series \"mm/damon/core: validate damos_quota_goal->nid\".\n\nnode_mem[cg]_{used,free}_bp DAMOS quota goals receive the node id.  The\nnode id is used for si_meminfo_node() and NODE_DATA() without proper\nvalidation.  As a result, privileged users can trigger an out of bounds\nmemory access using DAMON_SYSFS.  Fix the issues.\n\nThe issue was originally reported [1] with a fix by another author.  The\noriginal author announced [2] that they will stop working including the\nfix that was still in the review stage.  Hence I'm restarting this.\n\n\nThis patch (of 2):\n\nUsers can set damos_quota_goal->nid with arbitrary value for\nnode_mem_{used,free}_bp.  But DAMON core is using those for\nsi_meminfo_node() without the validation of the value.  This can result in\nout of bounds memory access.  The issue can actually triggered using DAMON\nuser-space tool (damo), like below.\n\n    $ sudo ./damo start --damos_action stat \\\n    \t--damos_quota_goal node_mem_used_bp 50% -1 \\\n    \t--damos_quota_interval 1s\n    $ sudo dmesg\n    [...]\n    [   65.565986] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000098\n\nFix this issue by adding the validation of the given node.  If an invalid\nnode id is given, it returns 0% for used memory ratio, and 100% for free\nmemory ratio."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/40250b2dded0604a112be605f3828700d80ad7c2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b09958e235f2b9cd3898b85a8529172afa80d212","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bcad74078708f2330a45b55358ebc38f8f4b1127","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46021","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.567","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Fix thermal zone governor cleanup issues\n\nIf thermal_zone_device_register_with_trips() fails after adding\na thermal governor to the thermal zone being registered, the\ngovernor is not removed from it as appropriate which may lead to\na memory leak.\n\nIn turn, thermal_zone_device_unregister() calls thermal_set_governor()\nwithout acquiring the thermal zone lock beforehand which may race with\na governor update via sysfs and may lead to a use-after-free in that\ncase.\n\nAddress these issues by adding two thermal_set_governor() calls, one to\nthermal_release() to remove the governor from the given thermal zone,\nand one to the thermal zone registration error path to cover failures\npreceding the thermal zone device registration."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/37a430a2d4e66ec8238da6c7f7e48809bf265e13","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/41ff66baf81c6541f4f985dd7eac4494d03d9440","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/64d4ebf91d082034bbc5ae3ba2d7fd800bc02d06","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/75f8f3c3e09122270986de9d7aa347d701676761","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f412e541d25a3dfaf3d53e012ade6ff03cae8a45","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46022","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.670","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: ibmasm: fix OOB MMIO read in ibmasm_handle_mouse_interrupt()\n\nibmasm_handle_mouse_interrupt() performs an out-of-bounds MMIO read\nwhen the queue reader or writer index from hardware exceeds\nREMOTE_QUEUE_SIZE (60).\n\nA compromised service processor can trigger this by writing an\nout-of-range value to the reader or writer MMIO register before\nasserting an interrupt. Since writer is re-read from hardware on\nevery loop iteration, it can also be set to an out-of-range value\nafter the loop has already started.\n\nThe root cause is that get_queue_reader() and get_queue_writer() return\nraw readl() values that are passed directly into get_queue_entry(),\nwhich computes:\n\n  queue_begin + reader * sizeof(struct remote_input)\n\nwith no bounds check. This unchecked MMIO address is then passed to\nmemcpy_fromio(), reading 8 bytes from unintended device registers.\nFor sufficiently large values the address falls outside the PCI BAR\nmapping entirely, triggering a machine check exception.\n\nFix by checking both indices against REMOTE_QUEUE_SIZE at the top of\nthe loop body, before any call to get_queue_entry(). On an out-of-range\nvalue, reset the reader register to 0 via set_queue_reader() before\nbreaking, so that normal queue operation can resume if the corrupted\nhardware state is transient."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/07c4f18b303106e6b24492c12b95d48a4b985841","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1ca75f6b74ec7f685464e5745ecfcf3a76d284e9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/22a16d3eafee92a165c756081587c95850127107","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4b6e6ead556734bdc14024c5f837132b1e7a4b84","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fc7e9a74e32299d7e93e178ca482a0b59ef1595b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46023","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.783","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndm mirror: fix integer overflow in create_dirty_log()\n\nThe argument count calculation in create_dirty_log() performs\n`*args_used = 2 + param_count` before validating against argc. When a\nuser provides a param_count close to UINT_MAX via the device mapper\ntable string, this unsigned addition wraps around to a small value,\ncausing the subsequent `argc < *args_used` check to be bypassed.\n\nThe overflowed param_count is then passed as argc to dm_dirty_log_create(),\nwhere it can cause out-of-bounds reads on the argv array.\n\nFix by comparing param_count against argc - 2 before performing the\naddition, following the same pattern used by parse_features() in the\nsame file. Since argc >= 2 is already guaranteed, the subtraction is\nsafe."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/17a08791d428885d00e510864283a7b839792368","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/35f6b3281efd44d19110574663bc17a610bc73b9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/47dad9eea75d33212d3d2cea10e7ed6a1bfc0713","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4c788c6f921b22f9b6c3f316c4a071c05683e7de","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/87c99a50e0fdc68a5b9b52a94d49452cd3ff02ca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46024","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:20.890","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()\n\nIf a message of type CEPH_MSG_AUTH_REPLY contains a zero value for both\nprotocol and result, this is currently not treated as an error. In case\nof ac->negotiating == true and ac->protocol > 0, this leads to setting\nac->protocol = 0 and ac->ops = NULL. Thereafter, the check for\nac->protocol != protocol returns false, and init_protocol() is not\ncalled. Subsequently, ac->ops->handle_reply() is called, which leads to\na null pointer dereference, because ac->ops is still NULL.\n\nThis patch changes the check for ac->protocol != protocol to\n!ac->protocol, as this also includes the case when the protocol was set\nto zero in the message. This causes the message to be treated as\ncontaining a bad auth protocol."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/016bc663657366d386993f63eb31072eb45a2b77","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4b2738b93edad661178340239de657d876b73d3d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5199c125d25aeae8615c4fc31652cc0fe624338e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8f2be7285941a33a9f72579a23b96392f83c758e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/927e4bd5692f2a4901808822981fb2c8d4456548","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46025","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.013","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/core: fix damon_call() vs kdamond_fn() exit race\n\nPatch series \"mm/damon/core: fix damon_call()/damos_walk() vs kdmond exit\nrace\".\n\ndamon_call() and damos_walk() can leak memory and/or deadlock when they\nrace with kdamond terminations.  Fix those.\n\n\nThis patch (of 2);\n\nWhen kdamond_fn() main loop is finished, the function cancels all\nremaining damon_call() requests and unset the damon_ctx->kdamond so that\nAPI callers and API functions themselves can know the context is\nterminated.  damon_call() adds the caller's request to the queue first. \nAfter that, it shows if the kdamond of the damon_ctx is still running\n(damon_ctx->kdamond is set).  Only if the kdamond is running, damon_call()\nstarts waiting for the kdamond's handling of the newly added request.\n\nThe damon_call() requests registration and damon_ctx->kdamond unset are\nprotected by different mutexes, though.  Hence, damon_call() could race\nwith damon_ctx->kdamond unset, and result in deadlocks.\n\nFor example, let's suppose kdamond successfully finished the damon_call()\nrequests cancelling.  Right after that, damon_call() is called for the\ncontext.  It registers the new request, and shows the context is still\nrunning, because damon_ctx->kdamond unset is not yet done.  Hence the\ndamon_call() caller starts waiting for the handling of the request. \nHowever, the kdamond is already on the termination steps, so it never\nhandles the new request.  As a result, the damon_call() caller threads\ninfinitely waits.\n\nFix this by introducing another damon_ctx field, namely\ncall_controls_obsolete.  It is protected by the\ndamon_ctx->call_controls_lock, which protects damon_call() requests\nregistration.  Initialize (unset) it in kdamond_fn() before letting\ndamon_start() returns and set it just before the cancelling of remaining\ndamon_call() requests is executed.  damon_call() reads the obsolete field\nunder the lock and avoids adding a new request.\n\nAfter this change, only requests that are guaranteed to be handled or\ncancelled are registered.  Hence the after-registration DAMON context\ntermination check is no longer needed.  Remove it together.\n\nNote that the deadlock will not happen when damon_call() is called for\nrepeat mode request.  In tis case, damon_call() returns instead of waiting\nfor the handling when the request registration succeeds and it shows the\nkdamond is running.  However, if the request also has dealloc_on_cancel,\nthe request memory would be leaked.\n\nThe issue is found by sashiko [1]."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2691332ad88b57179c38653e2cd613d5820a52cf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/55da81663b9642dd046b26dd6f1baddbcf337c1e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e6a053a6f4b5048746c49432a5cc5b79fe4695fe","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46026","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.160","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: ns: Limit the maximum number of lookups\n\nCurrent code does no bound checking on the number of lookups a client can\nperform. Though the code restricts the lookups to local clients, there is\nstill a possibility of a malicious local client sending a flood of\nNEW_LOOKUP messages over the same socket.\n\nFix this issue by limiting the maximum number of lookups to 64 globally.\nSince the nameserver allows only atmost one local observer, this global\nlookup count will ensure that the lookups stay within the limit.\n\nNote that, limit of 64 is chosen based on the current platform\nrequirements. If requirement changes in the future, this limit can be\nincreased."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0dbec101a7076e9b1e4bd1876f7cf07c56ff4ce3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/20855cef7e659ef84ac73251256fa530819b2346","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2b930bc77e00cb27e1d6e1d497b3b596283465ef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5640227d9a21c6a8be249a10677b832e7f40dc55","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/76adf8f69b0bb3ab20be7c58f5d555027332d113","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46027","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.303","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: avoid early lgr access in smc_clc_wait_msg\n\nA CLC decline can be received while the handshake is still in an early\nstage, before the connection has been associated with a link group.\n\nThe decline handling in smc_clc_wait_msg() updates link-group level sync\nstate for first-contact declines, but that state only exists after link\ngroup setup has completed. Guard the link-group update accordingly and\nkeep the per-socket peer diagnosis handling unchanged.\n\nThis preserves the existing sync_err handling for established link-group\ncontexts and avoids touching link-group state before it is available."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5a8db80f721deee8e916c2cfdee78decda02ce4f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6180a296ca65b08a81914805cbc0f78da5f10a1f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83bcf9228b0501694fb2589ed1d142855a2887f2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ea0b5d0fe96356dce38f98375a57c52a04e13712","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f0858e1d5624bb120b198f2a8528f97a9b0ae069","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46028","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.420","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: algif_aead - snapshot IV for async AEAD requests\n\nAF_ALG AEAD AIO requests currently use the socket-wide IV buffer during\nrequest processing.  For async requests, later socket activity can\nupdate that shared state before the original request has fully\ncompleted, which can lead to inconsistent IV handling.\n\nSnapshot the IV into per-request storage when preparing the AEAD\nrequest, so in-flight operations no longer depend on mutable socket\nstate."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/08ea39a556ecd39b33c2b4888861001c6706a62e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3d72f8c6490dc79210b64270740cb2a8619361a4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/46fdb39e83227b5d39f7c934a0947ea913f13c18","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5aa58c3a572b3e3b6c786953339f7978b845cc52","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a920cabdb0b7cf1f4e11a20524253ae5bd09092b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c2138c9bd02af19e0b407376140cd5435b0d81da","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ebc235675f24b0e3f8bc92b8419471d42f837d8f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fa0fcec9b49d58e71df7ede91ecd86855f608e85","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46029","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.563","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slab: return NULL early from kmalloc_nolock() in NMI on UP\n\nOn UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that\nunconditionally succeeds even when the lock is already held. As a\nresult, kmalloc_nolock() called from NMI context can re-enter the slab\nallocator and acquire n->list_lock that the interrupted context is\nalready holding, corrupting slab state.\n\nWith CONFIG_DEBUG_SPINLOCK on UP, the following BUG is triggered with\nthe slub_kunit test module:\n\n  BUG: spinlock trylock failure on UP on CPU#0, kunit_try_catch/243\n  [...]\n  Call Trace:\n   <NMI>\n   dump_stack_lvl+0x3f/0x60\n   do_raw_spin_trylock+0x41/0x50\n   _raw_spin_trylock+0x24/0x50\n   get_from_partial_node+0x120/0x4d0\n   ___slab_alloc+0x8a/0x4c0\n   kmalloc_nolock_noprof+0x164/0x310\n   [...]\n   </NMI>\n\nFix this by returning NULL early when invoked from NMI on a UP kernel."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5b31044e649e3e54c2caef135c09b371c2fbcd08","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a8d95d274be241ad21f6523bf2d6ba0d7d7e46b7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d66553204a15bdb257d9ef8aca1e12f5fbb910b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46030","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:21.913","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/versalnet: Fix device_node leak in mc_probe()\n\nof_parse_phandle() returns a device_node reference that must be released with\nof_node_put(). The original code never freed r5_core_node on any exit path,\ncausing a memory leak.\n\nFix this by using the automatic cleanup attribute __free(device_node) which\nensures of_node_put() is called when the variable goes out of scope."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/17e136993b2b5111d1ee1c57bbd188ae0bb0e128","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5c709b376460ff322580c41600e31c02f7cc0307","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b6e61356ad24987be40bf25369d22dd8dd00a513","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46031","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.057","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ks8851: Reinstate disabling of BHs around IRQ handler\n\nIf the driver executes ks8851_irq() AND a TX packet has been sent, then\nthe driver enables TX queue via netif_wake_queue() which schedules TX\nsoftirq to queue packets for this device.\n\nIf CONFIG_PREEMPT_RT=y is set AND a packet has also been received by\nthe MAC, then ks8851_rx_pkts() calls netdev_alloc_skb_ip_align() to\nallocate SKBs for the received packets. If netdev_alloc_skb_ip_align()\nis called with BH enabled, then local_bh_enable() at the end of\nnetdev_alloc_skb_ip_align() will trigger the pending softirq processing,\nwhich may ultimately call the .xmit callback ks8851_start_xmit_par().\nThe ks8851_start_xmit_par() will try to lock struct ks8851_net_par\n.lock spinlock, which is already locked by ks8851_irq() from which\nks8851_start_xmit_par() was called. This leads to a deadlock, which\nis reported by the kernel, including a trace listed below.\n\nIf CONFIG_PREEMPT_RT is not set, then since commit 0913ec336a6c0\n(\"net: ks8851: Fix deadlock with the SPI chip variant\") the deadlock\ncan also be triggered without received packet in the RX FIFO. The\npending softirqs will be processed on return from\nspin_unlock_bh(&ks->statelock) in ks8851_irq(), which triggers the\ndeadlock as well.\n\nFix the problem by disabling BH around critical sections, including the\nIRQ handler, thus preventing the net_tx_action() softirq from triggering\nduring these critical sections. The net_tx_action() softirq is triggered\nonce BH are re-enabled and at the end of the IRQ handler, once all the\nother IRQ handler actions have been completed.\n\n __schedule from schedule_rtlock+0x1c/0x34\n schedule_rtlock from rtlock_slowlock_locked+0x548/0x904\n rtlock_slowlock_locked from rt_spin_lock+0x60/0x9c\n rt_spin_lock from ks8851_start_xmit_par+0x74/0x1a8\n ks8851_start_xmit_par from netdev_start_xmit+0x20/0x44\n netdev_start_xmit from dev_hard_start_xmit+0xd0/0x188\n dev_hard_start_xmit from sch_direct_xmit+0xb8/0x25c\n sch_direct_xmit from __qdisc_run+0x1f8/0x4ec\n __qdisc_run from qdisc_run+0x1c/0x28\n qdisc_run from net_tx_action+0x1f0/0x268\n net_tx_action from handle_softirqs+0x1a4/0x270\n handle_softirqs from __local_bh_enable_ip+0xcc/0xe0\n __local_bh_enable_ip from __alloc_skb+0xd8/0x128\n __alloc_skb from __netdev_alloc_skb+0x3c/0x19c\n __netdev_alloc_skb from ks8851_irq+0x388/0x4d4\n ks8851_irq from irq_thread_fn+0x24/0x64\n irq_thread_fn from irq_thread+0x178/0x28c\n irq_thread from kthread+0x12c/0x138\n kthread from ret_from_fork+0x14/0x28"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/21f1707a8e978558dcb11b053855521e32ac0eec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/518040324067d8efaa2da1992297b7e7bf5640f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5c9fcac3c872224316714d0d8914d9af16c76a6d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/640a7631d31db87d5fa1b34cea44a99b6e78854b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/be8aad558b4675f45b43080f81a9ffdeddea73a5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46032","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.190","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Triple fault if restore host CR3 fails on nested #VMEXIT\n\nIf loading L1's CR3 fails on a nested #VMEXIT, nested_svm_vmexit()\nreturns an error code that is ignored by most callers, and continues to\nrun L1 with corrupted state. A sane recovery is not possible in this\ncase, and HW behavior is to cause a shutdown. Inject a triple fault\ninstead, and do not return early from nested_svm_vmexit(). Continue\ncleaning up the vCPU state (e.g. clear pending exceptions), to handle\nthe failure as gracefully as possible.\n\nFrom the APM:\n\n  Upon #VMEXIT, the processor performs the following actions in order to\n  return to the host execution context:\n\n  ...\n\n  if (illegal host state loaded, or exception while loading host state)\n      shutdown\n  else\n      execute first host instruction following the VMRUN\n\nRemove the return value of nested_svm_vmexit(), which is mostly\nunchecked anyway."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5d291ef0585ed880ed4dd71ea1a5965e0a65fb53","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a738cf170a4a2332ea3a15e23ec65b5757fe4a1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46033","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.313","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: authencesn - reject short ahash digests during instance creation\n\nauthencesn requires either a zero authsize or an authsize of at least\n4 bytes because the ESN encrypt/decrypt paths always move 4 bytes of\nhigh-order sequence number data at the end of the authenticated data.\n\nWhile crypto_authenc_esn_setauthsize() already rejects explicit\nnon-zero authsizes in the range 1..3, crypto_authenc_esn_create()\nstill copied auth->digestsize into inst->alg.maxauthsize without\nvalidating it.  The AEAD core then initialized the tfm's default\nauthsize from that value.\n\nAs a result, selecting an ahash with digest size 1..3, such as\ncbcmac(cipher_null), exposed authencesn instances whose default\nauthsize was invalid even though setauthsize() would have rejected the\nsame value.  AF_ALG could then trigger the ESN tail handling with a\ntoo-short tag and hit an out-of-bounds access.\n\nReject authencesn instances whose ahash digest size is in the invalid\nnon-zero range 1..3 so that no tfm can inherit an unsupported default\nauthsize."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5db6ef9847717329f12c5ea8aba7e9f588a980c0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/67f1f0933cc3d78dde222842bcad2778ec7a0b88","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9aff81e8217e9de2929084b03b3c7f81988c112b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b42821c15445f93daea3e76ada682b2b7181c476","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b69933e97efea238ebbfcf70c2b1be1cd03f13e3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46034","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.463","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/cdx: Fix NULL pointer dereference in interrupt trigger path\n\nAdd validation to ensure MSI is configured before accessing cdx_irqs\narray in vfio_cdx_set_msi_trigger(). Without this check, userspace\ncan trigger a NULL pointer dereference by calling VFIO_DEVICE_SET_IRQS\nwith VFIO_IRQ_SET_DATA_BOOL or VFIO_IRQ_SET_DATA_NONE flags before\never setting up interrupts via VFIO_IRQ_SET_DATA_EVENTFD.\n\nThe vfio_cdx_msi_enable() function allocates the cdx_irqs array and\nsets config_msi to 1 only when called through the EVENTFD path. The\ntrigger loop (for DATA_BOOL/DATA_NONE) assumed this had already been\ndone, but there was no enforcement of this call ordering.\n\nThis matches the protection used in the PCI VFIO driver where\nvfio_pci_set_msi_trigger() checks irq_is() before the trigger loop."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/338a736aaf15e8ba3635ce20b29af5b8fc15e66a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/51bf7638f33aece41cb3f4cbeb942cc52950e329","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5d6c349c9823eb819fed8b537b088cf38126018c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5ea5880764cbb164afb17a62e76ca75dc371409d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46035","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.617","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/page_alloc: return NULL early from alloc_frozen_pages_nolock() in NMI on UP\n\nOn UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that\nunconditionally succeeds even when the lock is already held. As a\nresult, alloc_frozen_pages_nolock() called from NMI context can\nre-enter rmqueue() and acquire the zone lock that the interrupted\ncontext is already holding, corrupting the freelists.\n\nWith CONFIG_DEBUG_SPINLOCK on UP, the following BUG is triggered with\nthe slub_kunit test module:\n\n  BUG: spinlock trylock failure on UP on CPU#0, kunit_try_catch/243\n  [...]\n  Call Trace:\n   <NMI>\n   dump_stack_lvl+0x3f/0x60\n   do_raw_spin_trylock+0x41/0x50\n   _raw_spin_trylock+0x24/0x50\n   rmqueue.isra.0+0x2a9/0xa70\n   get_page_from_freelist+0xeb/0x450\n   alloc_frozen_pages_nolock_noprof+0x111/0x1e0\n   allocate_slab+0x42a/0x500\n   ___slab_alloc+0xa7/0x4c0\n   kmalloc_nolock_noprof+0x164/0x310\n   [...]\n   </NMI>\n\nFix this by returning NULL early when invoked from NMI on a UP kernel."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/05b4ed8bef30bba4f559c8d835e2dd20c48cf8a4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/620b46ed6ae17c8438d889c8c0cfddab36a1476c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a6d57efeaae3f3b3656514f600eac96be713d90e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46036","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:22.913","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex\n\nvfio_cdx_set_msi_trigger() reads vdev->config_msi and operates on the\nvdev->cdx_irqs array based on its value, but provides no serialization\nagainst concurrent VFIO_DEVICE_SET_IRQS ioctls.  Two callers can race\nsuch that one observes config_msi as set while another clears it and\nfrees cdx_irqs via vfio_cdx_msi_disable(), resulting in a use-after-free\nof the cdx_irqs array.\n\nAdd a cdx_irqs_lock mutex to struct vfio_cdx_device and acquire it in\nvfio_cdx_set_msi_trigger(), which is the single chokepoint through\nwhich all updates to config_msi, cdx_irqs, and msi_count flow, covering\nboth the ioctl path and the close-device cleanup path.  This keeps the\ntest of config_msi atomic with the subsequent enable, disable, or\ntrigger operations.\n\nDrop the pre-call !cdx_irqs test from vfio_cdx_irqs_cleanup() as part\nof this change: the optimization it provided is redundant with the\n!config_msi early-return inside vfio_cdx_msi_disable(), and leaving the\ntest in place would be an unsynchronized read of state the new lock is\nmeant to protect."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/670e8864b1a218d72f08db40d0103adf38fa1d9b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7530f34ec0ca1438d45a75dcb43183a1cc92eced","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7b436ade16cc81095d79b79f8efa3af0a4f5c5a2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ddf96e23c366c566283fce8377928851fa7f5e81","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46037","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.027","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: icmp: validate reply type before using icmp_pointers\n\nExtended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type.\nThat value is outside the range covered by icmp_pointers[], which only\ndescribes the traditional ICMP types up to NR_ICMP_TYPES.\n\nAvoid consulting icmp_pointers[] for reply types outside that range, and\nuse array_index_nospec() for the remaining in-range lookup. Normal ICMP\nreplies keep their existing behavior unchanged."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/67bf002a2d7387a6312138210d0bd06e3cf4879b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/92e7c209036dcc0e8ffdf806fdfd3645b263bea5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bc64a66e0b9ad937d3d49934242ee62b01ba9a94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c2178ff1c70ebfc2ab9651b230c58a34683db759","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d700c34a5d186b9ba0715bcb19e0ff80ffbfbfc1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46038","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.140","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: ns: Free the node during ctrl_cmd_bye()\n\nA node sends the BYE packet when it is about to go down. So the nameserver\nshould advertise the removal of the node to all remote and local observers\nand free the node finally. But currently, the nameserver doesn't free the\nnode memory even after processing the BYE packet. This causes the node\nmemory to leak.\n\nHence, remove the node from Xarray list and free the node memory during\nboth success and failure case of ctrl_cmd_bye()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/076e4b162d6caba12c229e7f262df5b6881162b0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/154fc7fe3f62c46891c3c4302f4b5b5391c932e6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/65932f5102bb5377db36c8a4f0c28179a1967a9a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/68efba36446a7774ea5b971257ade049272a07ac","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ff78ed177a66763085e3214d6fbe13ca8f0b3f11","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46039","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.263","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxgk: Fix potential integer overflow in length check\n\nFix potential integer overflow in rxgk_extract_token() when checking the\nlength of the ticket.  Rather than rounding up the value to be tested\n(which might overflow), round down the size of the available data."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/183d37f12d1c8ed24a5bfc7addad05510da22a94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/43222ac484f93b3ec2d240a7575e1cedd31f5fa4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6929350080f4da292d111a3b33e53138fee51cec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46040","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.387","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ninotify: fix watch count leak when fsnotify_add_inode_mark_locked() fails\n\nWhen fsnotify_add_inode_mark_locked() fails in inotify_new_watch(),\nthe error path calls inotify_remove_from_idr() but does not call\ndec_inotify_watches() to undo the preceding inc_inotify_watches().\nThis leaks a watch count, and repeated failures can exhaust the\nmax_user_watches limit with -ENOSPC even when no watches are active.\n\nPrior to commit 1cce1eea0aff (\"inotify: Convert to using per-namespace\nlimits\"), the watch count was incremented after fsnotify_add_mark_locked()\nsucceeded, so this path was not affected. The conversion moved\ninc_inotify_watches() before the mark insertion without adding the\ncorresponding rollback.\n\nAdd the missing dec_inotify_watches() call in the error path."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6a320935fa4293e9e599ec9f85dc9eb3be7029f8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/73ddc8518a32baff6bc17afda4ee1ebae5b4ed12","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8bcc1cd237ab5ccfdd102869fa031c541943cf40","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9e48844f708eb48bae4e79cb21edc097c966306d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fdaa42ca370d056428e5e171247c8fdce8dff36a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46041","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.520","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ngreybus: gb-beagleplay: fix sleep in atomic context in hdlc_tx_frames()\n\nhdlc_append() calls usleep_range() to wait for circular buffer space,\nbut it is called with tx_producer_lock (a spinlock) held via\nhdlc_tx_frames() -> hdlc_append_tx_frame()/hdlc_append_tx_u8()/etc.\nSleeping while holding a spinlock is illegal and can trigger\n\"BUG: scheduling while atomic\".\n\nFix this by moving the buffer-space wait out of hdlc_append() and into\nhdlc_tx_frames(), before the spinlock is acquired.  The new flow:\n\n 1. Pre-calculate the worst-case encoded frame length.\n 2. Wait (with sleep) outside the lock until enough space is available,\n    kicking the TX consumer work to drain the buffer.\n 3. Acquire the spinlock, re-verify space, and write the entire frame\n    atomically.\n\nThis ensures that sleeping only happens without any lock held, and\nthat frames are either fully enqueued or not written at all.\n\nThis bug is found by CodeQL static analysis tool (interprocedural\nsleep-in-atomic query) and my code review."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/51667fe2d9294d66e0228b9f51d1f01b6680a641","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6b526dca0966f2370835765019a54319b78fca8d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9f2b87bcdfed55145acbf932dc12f2c057145cad","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b2801647c203a38e013802e9e9616b5bfac64968","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46042","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.633","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/mempolicy: fix memory leaks in weighted_interleave_auto_store()\n\nweighted_interleave_auto_store() fetches old_wi_state inside the if\n(!input) block only.  This causes two memory leaks:\n\n1. When a user writes \"false\" and the current mode is already manual,\n   the function returns early without freeing the freshly allocated\n   new_wi_state.\n\n2. When a user writes \"true\", old_wi_state stays NULL because the\n   fetch is skipped entirely. The old state is then overwritten by\n   rcu_assign_pointer() but never freed, since the cleanup path is\n   gated on old_wi_state being non-NULL. A user can trigger this\n   repeatedly by writing \"1\" in a loop.\n\nFix both leaks by moving the old_wi_state fetch before the input check,\nmaking it unconditional.  This also allows a unified early return for both\n\"true\" and \"false\" when the requested mode matches the current mode.\n\nReviewed by: Donet Tom <donettom@linux.ibm.com>"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/39caa9ca863f96b3d00447c5aa200cabda489856","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6fae274ce0e3109cbbc4c18b354eaace1f0af7d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c42a7efb9060d89b72708ffaf255d0002c2164a7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46043","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.743","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv\n\nrxe_rcv() currently checks only that the incoming packet is at least\nheader_size(pkt) bytes long before payload_size() is used.\n\nHowever, payload_size() subtracts both the attacker-controlled BTH pad\nfield and RXE_ICRC_SIZE from pkt->paylen:\n\n  payload_size = pkt->paylen - offset[RXE_PAYLOAD] - bth_pad(pkt)\n                 - RXE_ICRC_SIZE\n\nThis means a short packet can still make payload_size() underflow even\nif it includes enough bytes for the fixed headers. Simply requiring\nheader_size(pkt) + RXE_ICRC_SIZE is not sufficient either, because a\npacket with a forged non-zero BTH pad can still leave payload_size()\nnegative and pass an underflowed value to later receive-path users.\n\nFix this by validating pkt->paylen against the full minimum length\nrequired by payload_size(): header_size(pkt) + bth_pad(pkt) +\nRXE_ICRC_SIZE."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2fd4f8b749309a61c3f3f88ee8891d94f79e1240","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7244491dab347f648e661da96dc0febadd9daec3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9b924f3a26b21330a837cfe72e819b6393bbeeaa","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e8ee0e792d475b1067c199ef0af1b6221fa6f43d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f83519a4c122c9c7a850a2197648a9ff4c67c520","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46044","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.853","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nipmi:ssif: Clean up kthread on errors\n\nIf an error occurs after the ssif kthread is created, but before the\nmain IPMI code starts the ssif interface, the ssif kthread will not\nbe stopped.\n\nSo make sure the kthread is stopped on an error condition if it is\nrunning."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/75c486cb1bcaa1a3ec3a6438498176a3a4998ae4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/800febc637d1c1974b1e899dea8a07e115d60766","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/858bc8b9edb6eaf0522900128bb9053e2df6b0f6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46045","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:23.953","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/md-llbitmap: skip reading rdevs that are not in_sync\n\nWhen reading bitmap pages from member disks, the code iterates through\nall rdevs and attempts to read from the first available one. However,\nit only checks for raid_disk assignment and Faulty flag, missing the\nIn_sync flag check.\n\nThis can cause bitmap data to be read from spare disks that are still\nbeing rebuilt and don't have valid bitmap information yet. Reading\nstale or uninitialized bitmap data from such disks can lead to\nincorrect dirty bit tracking, potentially causing data corruption\nduring recovery or normal operation.\n\nAdd the In_sync flag check to ensure bitmap pages are only read from\nfully synchronized member disks that have valid bitmap data."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3115fa2f62970d98f2a639145fb8e2767db8bbf9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7701e68b5072faa03a8f30b4081dc16df9092381","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/98623c7e2a51eab1833c8628d33fa9c6ef3ce325","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46046","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.083","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix missing brelse() in ext4_xattr_inode_dec_ref_all()\n\nThe commit c8e008b60492 (\"ext4: ignore xattrs past end\")\nintroduced a refcount leak in when block_csum is false.\n\next4_xattr_inode_dec_ref_all() calls ext4_get_inode_loc() to\nget iloc.bh, but never releases it with brelse()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/097227f1ffe1a85bc3c359f81c71e3d40e06e920","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1bc1107a3a403a6d440673ed6666f7b07ef868a8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1e6b0a69bf2c9c819255c7566e4355536d81d9cf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/77d059519382bd66283e6a4e83ee186e87e7708f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f072906688933bf47fabbaf63560be03357c8298","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46047","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.200","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: ns: Fix use-after-free in driver remove()\n\nIn the remove callback, if a packet arrives after destroy_workqueue() is\ncalled, but before sock_release(), the qrtr_ns_data_ready() callback will\ntry to queue the work, causing use-after-free issue.\n\nFix this issue by saving the default 'sk_data_ready' callback during\nqrtr_ns_init() and use it to replace the qrtr_ns_data_ready() callback at\nthe start of remove(). This ensures that even if a packet arrives after\ndestroy_workqueue(), the work struct will not be dereferenced.\n\nNote that it is also required to ensure that the RX threads are completed\nbefore destroying the workqueue, because the threads could be using the\nqrtr_ns_data_ready() callback."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0f313eb6a8f6dffa491373cf3afab979fa1c02f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2e127ceb1c415e246076d8e09e23e443a7a2038f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7809fea20c9404bfcfa6112ec08d1fe1d3520beb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/db3c60ec772de30acae92d560dfcc5258e58dbe8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f96779e916576e81430ebb326baff6e433fef8ae","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46048","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.310","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: caiaq: fix usb_dev refcount leak on probe failure\n\ncreate_card() takes a reference on the USB device with usb_get_dev()\nand stores the matching usb_put_dev() in card_free(), which is\ninstalled as the snd_card's ->private_free destructor.\n\nHowever, ->private_free is only assigned near the end of init_card(),\nafter several failure points (usb_set_interface(), EP type checks,\nusb_submit_urb(), the EP1_CMD_GET_DEVICE_INFO exchange, and its\ntimeout). When any of those fail, init_card() returns an error to\nsnd_probe(), which calls snd_card_free(card). Because ->private_free\nis still NULL, card_free() never runs, the usb_get_dev() reference\nis not dropped, and the struct usb_device leaks along with its\ndescriptor allocations and device_private.\n\nsyzbot reproduces this with a malformed UAC3 device whose only valid\naltsetting is 0; init_card()'s usb_set_interface(usb_dev, 0, 1) call\nfails with -EIO and triggers the leak.\n\nMove the ->private_free assignment into create_card(), immediately\nafter usb_get_dev(), so that every error path reaching snd_card_free()\nbalances the reference. card_free()'s callees (snd_usb_caiaq_input_free,\nfree_urbs, kfree) already tolerate the partially-initialized state\nbecause the chip private area is zero-initialized by snd_card_new()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/21ca595aafa40d3ac70eab1f4cb62cc00ca21657","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/50c6a1f05973f56d23280c9d7645a7a5734e0907","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6153878c5255bb69b7d0868105ca078ef13cbcf8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7a5f1cd22d47f8ca4b760b6334378ae42c1bd24b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da3b8fd6a202d94fef11a443abc9171c52426a1c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46049","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.433","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: ctxfi: Add fallback to default RSR for S/PDIF\n\nspdif_passthru_playback_get_resources() uses atc->pll_rate as the RSR\nfor the MSR calculation loop. However, pll_rate is only updated in\natc_pll_init() and not in hw_pll_init(), so it remains 0 after the\ncard init.\n\nWhen spdif_passthru_playback_setup() skips atc_pll_init() for\n32000 Hz, (rsr * desc.msr) always becomes 0, causing the loop to spin\nindefinitely.\n\nAdd fallback to use atc->rsr when atc->pll_rate is 0. This reflects\nthe hardware state, since hw_card_init() already configures the PLL\nto the default RSR."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/09496158f6ebba8830593f8972035c02f97124c1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/25ded535ee261161bcf19dafd525c542e606559d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/30f9494c6f2b53a78822cfb653ffbb1d092d44c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7d61662197ecdc458e33e475b6ada7f6da61d364","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/95b1ee8442cabbde83b2848e7c6100df90f3a00d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46050","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.547","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid10: fix deadlock with check operation and nowait requests\n\nWhen an array check is running it will raise the barrier at which point\nnormal requests will become blocked and increment the nr_pending value to\nsignal there is work pending inside of wait_barrier(). NOWAIT requests\ndo not block and so will return immediately with an error, and additionally\ndo not increment nr_pending in wait_barrier(). Upstream change commit\n43806c3d5b9b (\"raid10: cleanup memleak at raid10_make_request\") added a\ncall to raid_end_bio_io() to fix a memory leak when NOWAIT requests hit\nthis condition. raid_end_bio_io() eventually calls allow_barrier() and\nit will unconditionally do an atomic_dec_and_test(&conf->nr_pending) even\nthough the corresponding increment on nr_pending didn't happen in the\nNOWAIT case.\n\nThis can be easily seen by starting a check operation while an application\nis doing nowait IO on the same array. This results in a deadlocked state\ndue to nr_pending value underflowing and so the md resync thread gets stuck\nwaiting for nr_pending to == 0.\n\nOutput of r10conf state of the array when we hit this condition:\n\ncrash> struct r10conf\n\tbarrier = 1,\n        nr_pending = {\n          counter = -41\n        },\n        nr_waiting = 15,\n        nr_queued = 0,\n\nExample of md_sync thread stuck waiting on raise_barrier() and other\nrequests stuck in wait_barrier():\n\nmd1_resync\n[<0>] raise_barrier+0xce/0x1c0\n[<0>] raid10_sync_request+0x1ca/0x1ed0\n[<0>] md_do_sync+0x779/0x1110\n[<0>] md_thread+0x90/0x160\n[<0>] kthread+0xbe/0xf0\n[<0>] ret_from_fork+0x34/0x50\n[<0>] ret_from_fork_asm+0x1a/0x30\n\nkworker/u1040:2+flush-253:4\n[<0>] wait_barrier+0x1de/0x220\n[<0>] regular_request_wait+0x30/0x180\n[<0>] raid10_make_request+0x261/0x1000\n[<0>] md_handle_request+0x13b/0x230\n[<0>] __submit_bio+0x107/0x1f0\n[<0>] submit_bio_noacct_nocheck+0x16f/0x390\n[<0>] ext4_io_submit+0x24/0x40\n[<0>] ext4_do_writepages+0x254/0xc80\n[<0>] ext4_writepages+0x84/0x120\n[<0>] do_writepages+0x7a/0x260\n[<0>] __writeback_single_inode+0x3d/0x300\n[<0>] writeback_sb_inodes+0x1dd/0x470\n[<0>] __writeback_inodes_wb+0x4c/0xe0\n[<0>] wb_writeback+0x18b/0x2d0\n[<0>] wb_workfn+0x2a1/0x400\n[<0>] process_one_work+0x149/0x330\n[<0>] worker_thread+0x2d2/0x410\n[<0>] kthread+0xbe/0xf0\n[<0>] ret_from_fork+0x34/0x50\n[<0>] ret_from_fork_asm+0x1a/0x30"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1cdff2937c618f81058422bbdc4974a3e7ec9379","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/42fe37c90184cd1568838b84b488934c3671c963","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7d96f3120a7fb7210d21b520c5b6f495da6ba436","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/965d6162dd88cc7cc193cf7f5bfc132d8bbf0523","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cac2106bb9a2180b288079b49ed626414fb5bc45","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46051","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.693","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix soft lockup in retry_aligned_read()\n\nWhen retry_aligned_read() encounters an overlapped stripe, it releases\nthe stripe via raid5_release_stripe() which puts it on the lockless\nreleased_stripes llist. In the next raid5d loop iteration,\nrelease_stripe_list() drains the stripe onto handle_list (since\nSTRIPE_HANDLE is set by the original IO), but retry_aligned_read()\nruns before handle_active_stripes() and removes the stripe from\nhandle_list via find_get_stripe() -> list_del_init(). This prevents\nhandle_stripe() from ever processing the stripe to resolve the\noverlap, causing an infinite loop and soft lockup.\n\nFix this by using __release_stripe() with temp_inactive_list instead\nof raid5_release_stripe() in the failure path, so the stripe does not\ngo through the released_stripes llist. This allows raid5d to break out\nof its loop, and the overlap will be resolved when the stripe is\neventually processed by handle_stripe()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/09880592f5a9dc73377d6eb5ac123537b5f8df49","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1985cb3247e87ff6b8ca4bc5f9626f4f51024507","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7f9f7c697474268d9ef9479df3ddfe7cdcfbbffc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/80fc6ca2cbde018d52e13f305edcd643911bd94b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/883cc33b7af1c448663287f069ef9dfea001e90f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46052","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.807","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nceph: only d_add() negative dentries when they are unhashed\n\nCeph can call d_add(dentry, NULL) on a negative dentry that is already\npresent in the primary dcache hash.\n\nIn the current VFS that is not safe.  d_add() goes through __d_add()\nto __d_rehash(), which unconditionally reinserts dentry->d_hash into\nthe hlist_bl bucket.  If the dentry is already hashed, reinserting the\nsame node can corrupt the bucket, including creating a self-loop.\nOnce that happens, __d_lookup() can spin forever in the hlist_bl walk,\ntypically looping only on the d_name.hash mismatch check and\neventually triggering RCU stall reports like this one:\n\n rcu: INFO: rcu_sched self-detected stall on CPU\n rcu:         87-....: (2100 ticks this GP) idle=3a4c/1/0x4000000000000000 softirq=25003319/25003319 fqs=829\n rcu:         (t=2101 jiffies g=79058445 q=698988 ncpus=192)\n CPU: 87 UID: 2952868916 PID: 3933303 Comm: php-cgi8.3 Not tainted 6.18.17-i1-amd #950 NONE\n Hardware name: Dell Inc. PowerEdge R7615/0G9DHV, BIOS 1.6.6 09/22/2023\n RIP: 0010:__d_lookup+0x46/0xb0\n Code: c1 e8 07 48 8d 04 c2 48 8b 00 49 89 fc 49 89 f5 48 89 c3 48 83 e3 fe 48 83 f8 01 77 0f eb 2d 0f 1f 44 00 00 48 8b 1b 48 85 db <74> 20 39 6b 18 75 f3 48 8d 7b 78 e8 ba 85 d0 00 4c 39 63 10 74 1f\n RSP: 0018:ff745a70c8253898 EFLAGS: 00000282\n RAX: ff26e470054cb208 RBX: ff26e470054cb208 RCX: 000000006e958966\n RDX: ff26e48267340000 RSI: ff745a70c82539b0 RDI: ff26e458f74655c0\n RBP: 000000006e958966 R08: 0000000000000180 R09: 9cd08d909b919a89\n R10: ff26e458f74655c0 R11: 0000000000000000 R12: ff26e458f74655c0\n R13: ff745a70c82539b0 R14: d0d0d0d0d0d0d0d0 R15: 2f2f2f2f2f2f2f2f\n FS:  00007f5770896980(0000) GS:ff26e482c5d88000(0000) knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f5764de50c0 CR3: 000000a72abb5001 CR4: 0000000000771ef0\n PKRU: 55555554\n Call Trace:\n  <TASK>\n  lookup_fast+0x9f/0x100\n  walk_component+0x1f/0x150\n  link_path_walk+0x20e/0x3d0\n  path_lookupat+0x68/0x180\n  filename_lookup+0xdc/0x1e0\n  vfs_statx+0x6c/0x140\n  vfs_fstatat+0x67/0xa0\n  __do_sys_newfstatat+0x24/0x60\n  do_syscall_64+0x6a/0x230\n  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThis is reachable with reused cached negative dentries.  A Ceph lookup\nor atomic_open can be handed a negative dentry that is already hashed,\nand fs/ceph/dir.c then hits one of two paths that incorrectly assume\n\"negative\" also means \"unhashed\":\n\n  - ceph_finish_lookup():\n      MDS reply is -ENOENT with no trace\n      -> d_add(dentry, NULL)\n\n  - ceph_lookup():\n      local ENOENT fast path for a complete directory with shared caps\n      -> d_add(dentry, NULL)\n\nBoth paths can therefore re-add an already-hashed negative dentry.\n\nCeph already uses the correct pattern elsewhere: ceph_fill_trace() only\ncalls d_add(dn, NULL) for a negative null-dentry reply when d_unhashed(dn)\nis true.\n\nFix both fs/ceph/dir.c sites the same way: only call d_add() for a\nnegative dentry when it is actually unhashed.  If the negative dentry\nis already hashed, leave it in place and reuse it as-is.\n\nThis preserves the existing behavior for unhashed dentries while\navoiding d_hash list corruption for reused hashed negatives."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2010cb06b9df7d3c816c78358c566bdacbdf38ff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4179cc390dacebc87079419ec92f86f3dc46294d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/803447f93d75ab6e40c85e6d12b5630d281d70d6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/83ce43a21bb7df8dd52228afdd918d2d058eefde","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b91e535f208c48a5e7464f1aa38338a30e7912df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46053","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:24.937","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rds: fix MR cleanup on copy error\n\n__rds_rdma_map() hands sg/pages ownership to the transport after\nget_mr() succeeds. If copying the generated cookie back to user space\nfails after that point, the error path must not free those resources\nagain before dropping the MR reference.\n\nRemove the duplicate unpin/free from the put_user() failure branch so\nthat MR teardown is handled only through the existing final cleanup\npath."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/033370ffb3c9c0264d19f8ba9ef769523266589a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8141a2dc70080eda1aedc0389ed2db2b292af5bd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8fdbb6262a4a3ed44a0830a7793903b54bb27bdc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b3cb8cae530b2727d8245684148bb49425f6765c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d95cea9298be1ba8876e3f156be96d3a492085ca","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46054","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.043","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: fix overlayfs mmap() and mprotect() access checks\n\nThe existing SELinux security model for overlayfs is to allow access if\nthe current task is able to access the top level file (the \"user\" file)\nand the mounter's credentials are sufficient to access the lower\nlevel file (the \"backing\" file).  Unfortunately, the current code does\nnot properly enforce these access controls for both mmap() and mprotect()\noperations on overlayfs filesystems.\n\nThis patch makes use of the newly created security_mmap_backing_file()\nLSM hook to provide the missing backing file enforcement for mmap()\noperations, and leverages the backing file API and new LSM blob to\nprovide the necessary information to properly enforce the mprotect()\naccess controls."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/82544d36b1729153c8aeb179e84750f0c085d3b1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/cd0e707a927a70cdfd8bc5a512a9719a87f5ed51","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46055","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.190","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: Fix string overrun due to missing termination\n\nWhen booting Ubuntu 26.04 with Linux 7.0-rc4 on an ARM64 Qualcomm\nSnapdragon X1 we see a string buffer overrun:\n\nBUG: KASAN: slab-out-of-bounds in aa_dfa_match (security/apparmor/match.c:535)\nRead of size 1 at addr ffff0008901cc000 by task snap-update-ns/2120\n\nCPU: 5 UID: 60578 PID: 2120 Comm: snap-update-ns Not tainted 7.0.0-rc4+ #22 PREEMPTLAZY\nHardware name: LENOVO 83ED/LNVNB161216, BIOS NHCN60WW 09/11/2025\nCall trace:\nshow_stack (arch/arm64/kernel/stacktrace.c:501) (C)\ndump_stack_lvl (lib/dump_stack.c:122)\nprint_report (mm/kasan/report.c:379 mm/kasan/report.c:482)\nkasan_report (mm/kasan/report.c:597)\n__asan_report_load1_noabort (mm/kasan/report_generic.c:378)\naa_dfa_match (security/apparmor/match.c:535)\nmatch_mnt_path_str (security/apparmor/mount.c:244 security/apparmor/mount.c:336)\nmatch_mnt (security/apparmor/mount.c:371)\naa_bind_mount (security/apparmor/mount.c:447 (discriminator 4))\napparmor_sb_mount (security/apparmor/lsm.c:719 (discriminator 1))\nsecurity_sb_mount (security/security.c:1062 (discriminator 31))\npath_mount (fs/namespace.c:4101)\n__arm64_sys_mount (fs/namespace.c:4172 fs/namespace.c:4361 fs/namespace.c:4338 fs/namespace.c:4338)\ninvoke_syscall.constprop.0 (arch/arm64/kernel/syscall.c:35 arch/arm64/kernel/syscall.c:49)\nel0_svc_common.constprop.0 (./include/linux/thread_info.h:142 (discriminator 2) arch/arm64/kernel/syscall.c:140 (discriminator 2))\ndo_el0_svc (arch/arm64/kernel/syscall.c:152)\nel0_svc (arch/arm64/kernel/entry-common.c:80 arch/arm64/kernel/entry-common.c:725)\nel0t_64_sync_handler (arch/arm64/kernel/entry-common.c:744)\nel0t_64_sync (arch/arm64/kernel/entry.S:596)\n\nAllocated by task 2120:\nkasan_save_stack (mm/kasan/common.c:58)\nkasan_save_track (./arch/arm64/include/asm/current.h:19 mm/kasan/common.c:70 mm/kasan/common.c:79)\nkasan_save_alloc_info (mm/kasan/generic.c:571)\n__kasan_kmalloc (mm/kasan/common.c:419)\n__kmalloc_noprof (./include/linux/kasan.h:263 mm/slub.c:5260 mm/slub.c:5272)\naa_get_buffer (security/apparmor/lsm.c:2201)\naa_bind_mount (security/apparmor/mount.c:442)\napparmor_sb_mount (security/apparmor/lsm.c:719 (discriminator 1))\nsecurity_sb_mount (security/security.c:1062 (discriminator 31))\npath_mount (fs/namespace.c:4101)\n__arm64_sys_mount (fs/namespace.c:4172 fs/namespace.c:4361 fs/namespace.c:4338 fs/namespace.c:4338)\ninvoke_syscall.constprop.0 (arch/arm64/kernel/syscall.c:35 arch/arm64/kernel/syscall.c:49)\nel0_svc_common.constprop.0 (./include/linux/thread_info.h:142 (discriminator 2) arch/arm64/kernel/syscall.c:140 (discriminator 2))\ndo_el0_svc (arch/arm64/kernel/syscall.c:152)\nel0_svc (arch/arm64/kernel/entry-common.c:80 arch/arm64/kernel/entry-common.c:725)\nel0t_64_sync_handler (arch/arm64/kernel/entry-common.c:744)\nel0t_64_sync (arch/arm64/kernel/entry.S:596)\n\nThe buggy address belongs to the object at ffff0008901ca000\nwhich belongs to the cache kmalloc-rnd-06-8k of size 8192\nThe buggy address is located 0 bytes to the right of\nallocated 8192-byte region [ffff0008901ca000, ffff0008901cc000)\n\nThe buggy address belongs to the physical page:\npage: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x9101c8\nhead: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:-1 pincount:0\nflags: 0x8000000000000040(head|zone=2)\npage_type: f5(slab)\nraw: 8000000000000040 ffff000800016c40 fffffdffe2d14e10 ffff000800015c70\nraw: 0000000000000000 0000000800010001 00000000f5000000 0000000000000000\nhead: 8000000000000040 ffff000800016c40 fffffdffe2d14e10 ffff000800015c70\nhead: 0000000000000000 0000000800010001 00000000f5000000 0000000000000000\nhead: 8000000000000003 fffffdffe2407201 fffffdffffffffff 00000000ffffffff\nhead: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008\npage dumped because: kasan: bad access detected\n\nMemory state around the buggy address:\nffff0008901cbf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\nffff0008\n---truncated---"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/4b877ef27adc8ec187b0418629169856e7264e01","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/828bf7929bedcb79b560b5b4e44f22abee07d31b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46056","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.317","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: fix potential UAF in SSP passkey handlers\n\nhci_conn lookup and field access must be covered by hdev lock in\nhci_user_passkey_notify_evt() and hci_keypress_notify_evt(), otherwise\nthe connection can be freed concurrently.\n\nExtend the hci_dev_lock critical section to cover all conn usage in both\nhandlers.\n\nKeep the existing keypress notification behavior unchanged by routing\nthe early exits through a common unlock path."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/01a6431766c35dfedb86e0cb5d3fc80c6d604a47","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/204028af77a265e31ceb4ba7f643349a3cca72b2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/85fa3512048793076eef658f66489112dcc91993","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8c6443bb9257b780986fb67ec08565bf48ecb8d7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e08d75753db17aa943d7622f09d9c217b5bfd3b8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46057","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.433","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nlandlock: Fix LOG_SUBDOMAINS_OFF inheritance across fork()\n\nhook_cred_transfer() only copies the Landlock security blob when the\nsource credential has a domain.  This is inconsistent with\nlandlock_restrict_self() which can set LOG_SUBDOMAINS_OFF on a\ncredential without creating a domain (via the ruleset_fd=-1 path): the\nfield is committed but not preserved across fork() because the child's\nprepare_creds() calls hook_cred_transfer() which skips the copy when\ndomain is NULL.\n\nThis breaks the documented use case where a process mutes subdomain logs\nbefore forking sandboxed children: the children lose the muting and\ntheir domains produce unexpected audit records.\n\nFix this by unconditionally copying the Landlock credential blob."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1c513b8a00df13d231021e74ad92babb3fedf64a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2fcde49092aac55d5beef43fdd3633217672f7d1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/874c8f83826c95c62c21d9edfe9ef43e5c346724","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46058","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.537","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: amphion: Fix race between m2m job_abort and device_run\n\nFix kernel panic caused by race condition where v4l2_m2m_ctx_release()\nfrees m2m_ctx while v4l2_m2m_try_run() is about to call device_run\nwith the same context.\n\nRace sequence:\n  v4l2_m2m_try_run():           v4l2_m2m_ctx_release():\n    lock/unlock                   v4l2_m2m_cancel_job()\n                                    job_abort()\n                                      v4l2_m2m_job_finish()\n                                  kfree(m2m_ctx)  <- frees ctx\n    device_run()  <- use-after-free crash at 0x538\n\nCrash trace:\n  Unable to handle kernel read from unreadable memory at virtual address\n  0000000000000538\n  v4l2_m2m_try_run+0x78/0x138\n  v4l2_m2m_device_run_work+0x14/0x20\n\nThe amphion vpu driver does not rely on the m2m framework's device_run\ncallback to perform encode/decode operations.\n\nFix the race by preventing m2m framework job scheduling entirely:\n- Add job_ready callback returning 0 (no jobs ready for m2m framework)\n- Remove job_abort callback to avoid the race condition"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/42dc622776f3ce1a6c31b13bdc686f7295e3b323","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6be2cb75bc1300080cfc8051579f22efae9401f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8cd35ceadcfc8c5da2eb7f7ce24525ce9d4ee62e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da4f46c5cf1d26e6b09418ad453e152f2e75a02c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fdc150dac1adb9a98be9d6956cff0348838b024a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46059","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.650","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Always use NextRIP as vmcb02's NextRIP after first L2 VMRUN\n\nFor guests with NRIPS disabled, L1 does not provide NextRIP when running\nan L2 with an injected soft interrupt, instead it advances the current RIP\nbefore running it. KVM uses the current RIP as the NextRIP in vmcb02 to\nemulate a CPU without NRIPS.\n\nHowever, after L2 runs the first time, NextRIP will be updated by the CPU\nand/or KVM, and the current RIP is no longer the correct value to use in\nvmcb02.  Hence, after save/restore, use the current RIP if and only if a\nnested run is pending, otherwise use NextRIP.  Give soft_int_next_rip the\nsame treatment, as it's the same logic, just for a narrower use case.\n\n[sean: give soft_int_next_rip the same treatment]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3428ed1529a1af4cce5aff6c5bd2fcc39ad726bb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/69fe1411a5ce678b4da6489b5d2282b4e1d13acf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8d397582f6b5e9fbcf09781c7c934b4910e94a50","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46060","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.757","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: qat - fix IRQ cleanup on 6xxx probe failure\n\nWhen adf_dev_up() partially completes and then fails, the IRQ\nhandlers registered during adf_isr_resource_alloc() are not detached\nbefore the MSI-X vectors are released.\n\nSince the device is enabled with pcim_enable_device(), calling\npci_alloc_irq_vectors() internally registers pcim_msi_release() as a\ndevres action. On probe failure, devres runs pcim_msi_release() which\ncalls pci_free_irq_vectors(), tearing down the MSI-X vectors while IRQ\nhandlers (for example 'qat0-bundle0') are still attached. This causes\nremove_proc_entry() warnings:\n\n    [   22.163964] remove_proc_entry: removing non-empty directory 'irq/143', leaking at least 'qat0-bundle0'\n\nMoving the devm_add_action_or_reset() before adf_dev_up() does not solve\nthe problem since devres runs in LIFO order and pcim_msi_release(),\nregistered later inside adf_dev_up(), would still fire before\nadf_device_down().\n\nFix by calling adf_dev_down() explicitly when adf_dev_up() fails, to\nproperly free IRQ handlers before devres releases the MSI-X vectors."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/27f561bf894e46bdc2d6209c50884adad79d8277","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/7cd651f1357dcc477e6483c3a4706836b46bdc92","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/95aed2af87ec43fa7624cc81dd13d37824ad4972","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46061","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:25.883","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: fix deadlock in jbd2_journal_cancel_revoke()\n\nCommit f76d4c28a46a (\"fs/jbd2: use sleeping version of\n__find_get_block()\") changed jbd2_journal_cancel_revoke() to use\n__find_get_block_nonatomic() which holds the folio lock instead of\ni_private_lock. This breaks the lock ordering (folio -> buffer) and\ncauses an ABBA deadlock when the filesystem blocksize < pagesize:\n\n     T1                                T2\next4_mkdir()\n ext4_init_new_dir()\n  ext4_append()\n   ext4_getblk()\n    lock_buffer()    <- A\n                                   sync_blockdev()\n                                    blkdev_writepages()\n                                     writeback_iter()\n                                      writeback_get_folio()\n                                       folio_lock()   <- B\n     ext4_journal_get_create_access()\n      jbd2_journal_cancel_revoke()\n       __find_get_block_nonatomic()\n        folio_lock()  <- B\n                                     block_write_full_folio()\n                                      lock_buffer()   <- A\n\nThis can occasionally cause generic/013 to hang.\n\nFix by only calling __find_get_block_nonatomic() when the passed\nbuffer_head doesn't belong to the bdev, which is the only case that we\nneed to look up its bdev alias. Otherwise, the lookup is redundant since\nthe found buffer_head is equal to the one we passed in."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2b2fee890250ab647a601124471a334bb01a0790","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/981fcc5674e67158d24d23e841523eccba19d0e7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bbd943d6a2d566428324b516a37f98328dfb802d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dff07cc98fdf6af57a7c054dc09b2050a9d5c287","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46062","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:26.063","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix integer overflow in run_unpack() volume boundary check\n\nThe volume boundary check `lcn + len > sbi->used.bitmap.nbits` uses raw\naddition which can wrap around for large lcn and len values, bypassing\nthe validation.  Use check_add_overflow() as is already done for the\nadjacent prev_lcn + dlcn and vcn64 + len checks added by commit\n3ac37e100385 (\"ntfs3: Fix integer overflow in run_unpack()\").\n\nFound by fuzzing with a source-patched harness (LibAFL + QEMU)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/60dab3e2931f3d792438a77a6cb0cb731c43300b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6175d09c23bec4b60860ee9a0170308ff4b56e10","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/984a415f019536ea2d24de9010744e5302a9a948","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a954061b334ec67c79ae9d0cadd83fa521396487","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1af27cec07a9fd0847166bdb23c99e86b05bfdc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46063","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:26.480","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nx86/shstk: Prevent deadlock during shstk sigreturn\n\nDuring sigreturn the shadow stack signal frame is popped. The kernel does\nthis by reading the shadow stack using normal read accesses. When it can't\nassume the memory is shadow stack, it takes extra steps to makes sure it is\nreading actual shadow stack memory and not other normal readable memory. It\ndoes this by holding the mmap read lock while doing the access and checking\nthe flags of the VMA.\n\nUnfortunately that is not safe. If the read of the shadow stack sigframe\nhits a page fault, the fault handler will try to recursively grab another\nmmap read lock. This normally works ok, but if a writer on another CPU is\nalso waiting, the second read lock could fail and cause a deadlock.\n\nFix this by not holding mmap lock during the read access to userspace.\n\nInstead use mmap_lock_speculate_...() to watch for changes between dropping\nmmap lock and the userspace access. Retry if anything grabbed an mmap write\nlock in between and could have changed the VMA.\n\nThese mmap_lock_speculate_...() helpers use mm::mm_lock_seq, which is only\navailable when PER_VMA_LOCK is configured. So make X86_USER_SHADOW_STACK\ndepend on it. On x86, PER_VMA_LOCK is a default configuration for SMP\nkernels. So drop support for the other configs under the assumption that\nthe !SMP shadow stack user base does not exist.\n\nCurrently there is a check that skips the lookup work when the SSP can be\nassumed to be on a shadow stack. While reorganizing the function, remove\nthe optimization to make the tricky code flows more common, such that\nissues like this cannot escape detection for so long."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3d29db827502067626062f5c74dd502d14ab15bc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4f3374c990fb2adec06d20fd6d780927811c9aa0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9874b2917b9fbc30956fee209d3c4aa47201c64e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d042d69b417515959e49021fef008c9b04a99bd5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e2c2b044458cbf22da05264fa707308e8d4f86f9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46064","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:26.867","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nibmasm: fix heap over-read in ibmasm_send_i2o_message()\n\nThe ibmasm_send_i2o_message() function uses get_dot_command_size() to\ncompute the byte count for memcpy_toio(), but this value is derived from\nuser-controlled fields in the dot_command_header (command_size: u8,\ndata_size: u16) and is never validated against the actual allocation size.\nA root user can write a small buffer with inflated header fields, causing\nmemcpy_toio() to read up to ~65 KB past the end of the allocation into\nadjacent kernel heap, which is then forwarded to the service processor\nover MMIO.\n\nSilently clamping the copy size is not sufficient: if the header fields\nclaim a larger size than the buffer, the SP receives a dot command whose\nown header is inconsistent with the I2O message length, which can cause\nthe SP to desynchronize. Reject such commands outright by returning\nfailure.\n\nValidate command_size before calling get_mfa_inbound() to avoid leaking\nan I2O message frame: reading INBOUND_QUEUE_PORT dequeues a hardware\nframe from the controller's free pool, and returning without a\ncorresponding set_mfa_inbound() call would permanently exhaust it.\n\nAdditionally, clamp command_size to I2O_COMMAND_SIZE before the\nmemcpy_toio() so the MMIO write stays within the I2O message frame,\nconsistent with the clamping already performed by outgoing_message_size()\nfor the header field."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9aad71144fa3682cca3837a06c8623016790e7ec","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9e8f6c9d4ecddda2f28baa1678340286cff3969c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c1c2417c60dbdca5ebb00462f21ee71c2d7f7083","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fd19eb1c75047a4ed4e855f56cafd704dc3914e0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fe31722b0194ff76bf8b461e8bf97a2081147787","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46065","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:27.050","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: defio: Disconnect deferred I/O from the lifetime of struct fb_info\n\nHold state of deferred I/O in struct fb_deferred_io_state. Allocate an\ninstance as part of initializing deferred I/O and remove it only after\nthe final mapping has been closed. If the fb_info and the contained\ndeferred I/O meanwhile goes away, clear struct fb_deferred_io_state.info\nto invalidate the mapping. Any access will then result in a SIGBUS\nsignal.\n\nFixes a long-standing problem, where a device hot-unplug happens while\nuser space still has an active mapping of the graphics memory. The hot-\nunplug frees the instance of struct fb_info. Accessing the memory will\noperate on undefined state."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/25c2b77bc463f29ee71a54b883548baf9386a0db","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2a40f8bc9bb713329f1c35ffc199ee961a7135b0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2b53d3a52e8e5403a4f4fb57ac6cad3fd2cb1066","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9ded47ad003f09a94b6a710b5c47f4aa5ceb7429","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0aafb421dd15e935d81543152617f2742cefa70","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46066","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:27.320","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix num_ops off-by-one when crypto allocation fails\n\nmove_dirty_folio_in_page_array() may fail if the file is encrypted, the\ndirty folio is not the first in the batch, and it fails to allocate a\nbounce buffer to hold the ciphertext. When that happens,\nceph_process_folio_batch() simply redirties the folio and flushes the\ncurrent batch -- it can retry that folio in a future batch.\n\nHowever, if this failed folio is not contiguous with the last folio that\ndid make it into the batch, then ceph_process_folio_batch() has already\nincremented `ceph_wbc->num_ops`; because it doesn't follow through and\nadd the discontiguous folio to the array, ceph_submit_write() -- which\nexpects that `ceph_wbc->num_ops` accurately reflects the number of\ncontiguous ranges (and therefore the required number of \"write extent\"\nops) in the writeback -- will panic the kernel:\n\n    BUG_ON(ceph_wbc->op_idx + 1 != req->r_num_ops);\n\nThis issue can be reproduced on affected kernels by writing to\nfscrypt-enabled CephFS file(s) with a 4KiB-written/4KiB-skipped/repeat\npattern (total filesize should not matter) and gradually increasing the\nsystem's memory pressure until a bounce buffer allocation fails.\n\nFix this crash by decrementing `ceph_wbc->num_ops` back to the correct\nvalue when move_dirty_folio_in_page_array() fails, but the folio already\nstarted counting a new (i.e. still-empty) extent.\n\nThe defect corrected by this patch has existed since 2022 (see first\n`Fixes:`), but another bug blocked multi-folio encrypted writeback until\nrecently (see second `Fixes:`). The second commit made it into 6.18.16,\n6.19.6, and 7.0-rc1, unmasking the panic in those versions. This patch\ntherefore fixes a regression (panic) introduced by cac190c7674f."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6200f41d6fcf2ac7e24866431e381cbc914560e4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a0d9555bf9eaeba34fe6b6bb86f442fe08ba3842","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ba12c1e578890f6337a415b7dedf476c6d455105","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46067","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:27.643","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/core: validate damos_quota_goal->nid for node_memcg_{used,free}_bp\n\nUsers can set damos_quota_goal->nid with arbitrary value for\nnode_memcg_{used,free}_bp.  But DAMON core is using those for NODE-DATA()\nwithout a validation of the value.  This can result in out of bounds\nmemory access.  The issue can actually triggered using DAMON user-space\ntool (damo), like below.\n\n    $ sudo mkdir /sys/fs/cgroup/foo\n    $ sudo ./damo start --damos_action stat --damos_quota_interval 1s \\\n            --damos_quota_goal node_memcg_used_bp 50% -1 /foo\n    $ sudo dmseg\n    [...]\n    [  524.181426] Unable to handle kernel paging request at virtual address 0000000000002c00\n\nFix this issue by adding the validation of the given node id.  If an\ninvalid node id is given, it returns 0% for used memory ratio, and 100%\nfor free memory ratio."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/a34dac6482e53e2c76944f25b1489b9b7da3a6e6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/da10db73ada26345244ea5dc52f974692bd05f66","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46068","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:27.940","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx\n\nThe bounce buffers are allocated with __get_free_pages() using\nBOUNCE_BUFFER_ORDER (order 2 = 4 pages), but both the allocation error\npath and nx842_crypto_free_ctx() release the buffers with free_page().\nUse free_pages() with the matching order instead."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5c07962fed66e1238fad7635fa150570bd38b4c5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/80fd99d7c30ea889662d21f1b44d8fea4c83138d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/910bb34b801d39794e656f7d48414844b2bd354e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/adb3faf2db1a66d0f015b44ac909a32dfc7f2f9c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f17a4850d1ce7c11cba8b1830b9bfedfede878bb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46069","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.170","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup()\n\nThe mwifiex_adapter_cleanup() function uses timer_delete()\n(non-synchronous) for the wakeup_timer before the adapter structure is\nfreed. This is incorrect because timer_delete() does not wait for any\nrunning timer callback to complete.\n\nIf the wakeup_timer callback (wakeup_timer_fn) is executing when\nmwifiex_adapter_cleanup() is called, the callback will continue to\naccess adapter fields (adapter->hw_status, adapter->if_ops.card_reset,\netc.) which may be freed by mwifiex_free_adapter() called later in the\nmwifiex_remove_card() path.\n\nUse timer_delete_sync() instead to ensure any running timer callback has\ncompleted before returning."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/030abbae49cf9fd1fba7aa08e15ec81efbeb78cf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/11869ce402d95519d49b25a2a97741f68d69d103","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4e179a60a60c0a5aea245e8e67768343c0f070b8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/63fe3389b3e092d6c0eeea9fc0318e7918b16618","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ae5e95d4157481693be2317e3ffcd84e36010cbb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46070","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.283","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: validate payload size before accessing journal metadata\n\nr5c_recovery_analyze_meta_block() and\nr5l_recovery_verify_data_checksum_for_mb() iterate over payloads in a\njournal metadata block using on-disk payload size fields without\nvalidating them against the remaining space in the metadata block.\n\nA corrupted journal contains payload sizes extending beyond the PAGE_SIZE\nboundary can cause out-of-bounds reads when accessing payload fields or\ncomputing offsets.\n\nAdd bounds validation for each payload type to ensure the full payload\nfits within meta_size before processing."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/33698bd1b2db9764a29df7751533d33967ff5c98","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/406aa86394ead347c47428fb51b6359bdaa2257d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/73ce72edd113374801045924d4417199963f73a3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b0cc3ae97e893bf54bbce447f4e9fd2e0b88bff9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c3a1cf78bd1bbb51b2cc5189b4743056553c1e0e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46071","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.397","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Avoid clearing VMCB_LBR in vmcb12\n\nsvm_copy_lbrs() always marks VMCB_LBR dirty in the destination VMCB.\nHowever, nested_svm_vmexit() uses it to copy LBRs to vmcb12, and\nclearing clean bits in vmcb12 is not architecturally defined.\n\nMove vmcb_mark_dirty() to callers and drop it for vmcb12.\n\nThis also facilitates incoming refactoring that does not pass the entire\nVMCB to svm_copy_lbrs()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9efe23568806d1cd06f7d146f9b3037b8d585a9f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a3f0981a5a0e0bd51ad74cc7d9eed32294b24002","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b53ab5167a81537777ac780bbd93d32613aa3bda","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46072","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.503","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: add buffer boundary checks to run_unpack()\n\nrun_unpack() checks `run_buf < run_last` at the top of the while loop\nbut then reads size_size and offset_size bytes via run_unpack_s64()\nwithout verifying they fit within the remaining buffer.  A crafted NTFS\nimage with truncated run data in an MFT attribute triggers an OOB heap\nread of up to 15 bytes when the filesystem is mounted.\n\nAdd boundary checks before each run_unpack_s64() call to ensure the\ndeclared field size does not exceed the remaining buffer.\n\nFound by fuzzing with a source-patched harness (LibAFL + QEMU)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/41aadf5cb482793a24e05aa136224e179a778586","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b62567bca47408e6739dee75f02a2113548af875","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bf7ac4a1d3bfc6e56e54635c3d331a68170d37c9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d3012690a7065d9ca86521a525ad11e8af491d45","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e64f7dfcaff79e7dfff9121a382dd77f9b462f62","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46073","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.607","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (powerz) Fix missing usb_kill_urb() on signal interrupt\n\nwait_for_completion_interruptible_timeout() returns -ERESTARTSYS when\ninterrupted. This needs to abort the URB and return an error. No data\nhas been received from the device so any reads from the transfer\nbuffer are invalid.\n\nThe original code tests !ret, which only catches the timeout case (0).\nOn signal delivery (-ERESTARTSYS), !ret is false so the function skips\nusb_kill_urb() and falls through to read from the unfilled transfer\nbuffer.\n\nFix by capturing the return value into a long (matching the function\nreturn type) and handling signal (negative) and timeout (zero) cases\nwith separate checks that both call usb_kill_urb() before returning."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/8b51277eec433d4e724b273a5a5c64e8acfbe405","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b66437cb20a2d9ef201f40b675569f8ea7787c9f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b6cb07f02253bdefd2339e57eaa1428a7b28cd0f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d64458784036f5818e22781254b6be299d52a19c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46074","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.717","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: ch341: fix memory leaks on probe failures\n\nMake sure to deregister the controller, disable pins, and kill and free\nthe RX URB on probe failures to mirror disconnect and avoid memory\nleaks and use-after-free.\n\nAlso add an explicit URB kill on disconnect for symmetry (even if that\nis not strictly required as USB core would have stopped it in the\ncurrent setup)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/5c6518633702d7f7b1153e9d8e042af847f11ef3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9bee2faf9e21c796d0d222c9d84a98f41bd303a0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b99e3ddb91b499d920e63a2daff8880be68cfe9e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ff8a7996dc8bf433efe2126ffdaee5b374a89e30","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46075","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.823","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: atmel-sha204a - Fix potential UAF and memory leak in remove path\n\nUnregister the hwrng to prevent new ->read() calls and flush the Atmel\nI2C workqueue before teardown to prevent a potential UAF if a queued\ncallback runs while the device is being removed.\n\nDrop the early return to ensure sysfs entries are removed and\n->hwrng.priv is freed, preventing a memory leak."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1193c12126d39bf986a5a9214827b73707b193ab","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/31901371ccd16b42d2f167b1018ba9ae8bd5a6c7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/775c00d87c385b758da9504cf053acea00e2ed40","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bab1adf3b87e4bfac92c4f5963c63db434d561c1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c5a45d14234bf26e28a89e3a5dcc08336595cf11","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46076","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:28.930","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1\n\nExplicitly synthesize a #UD for VMMCALL if L2 is active, L1 does NOT want\nto intercept VMMCALL, nested_svm_l2_tlb_flush_enabled() is true, and the\nhypercall is something other than one of the supported Hyper-V hypercalls.\nWhen all of the above conditions are met, KVM will intercept VMMCALL but\nnever forward it to L1, i.e. will let L2 make hypercalls as if it were L1.\n\nThe TLFS says a whole lot of nothing about this scenario, so go with the\narchitectural behavior, which says that VMMCALL #UDs if it's not\nintercepted.\n\nOpportunistically do a 2-for-1 stub trade by stub-ifying the new API\ninstead of the helpers it uses.  The last remaining \"single\" stub will\nsoon be dropped as well.\n\n[sean: rewrite changelog and comment, tag for stable, remove defunct stubs]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/009c0f726abeaa67aad1d96b883bdce01d405ce2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5fb4a5f361565f5b629d8a8fe5288ce8463c5727","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/924d721fae95687acedbaf624a094ed0e8b67104","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c36991c6f8d2ab56ee67aff04e3c357f45cfc76c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46077","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.040","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: atmel-tdes - fix DMA sync direction\n\nBefore DMA output is consumed by the CPU, ->dma_addr_out must be synced\nwith dma_sync_single_for_cpu() instead of dma_sync_single_for_device().\nUsing the wrong direction can return stale cache data on non-coherent\nplatforms."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/12a0adfe498cd5d87e6365d7ca5f6b3eed79e523","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5281e6e2302362f6b75b70cbfe4098d2a25dafd9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/863d11b3927703ad95077c81a8a6489c5c7872f7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b5f5df801d161ba244f391519cbff2f4e5c6edc2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c8a9a647532f5c2a04180352693215e24e9dba03","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46078","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.143","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: fix the out-of-bounds nameoff handling for trailing dirents\n\nCurrently we already have boundary-checks for nameoffs, but the trailing\ndirents are special since the namelens are calculated with strnlen()\nwith unchecked nameoffs.\n\nIf a crafted EROFS has a trailing dirent with nameoff >= maxsize,\nmaxsize - nameoff can underflow, causing strnlen() to read past the\ndirectory block.\n\nnameoff0 should also be verified to be a multiple of\n`sizeof(struct erofs_dirent)` as well [1].\n\n[1] https://sashiko.dev/#/patchset/20260416063511.3173774-1-hsiangkao%40linux.alibaba.com"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1d55445226c75ddd4e78b09b3e7d99109b28c366","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/222055e6b4063abd2d9e13c3d49bbd1724c50789","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/48b27a955d22391c7f30169fa7b6b2e1977f1ce4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8ebb951a284b7446e025afc7dc5e9516ef9a7214","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d18a3b5d337fa412a38e776e6b4b857a58836575","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46079","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.253","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrbd: fix null-ptr-deref when device_add_disk() fails\n\ndo_rbd_add() publishes the device with device_add() before calling\ndevice_add_disk(). If device_add_disk() fails after device_add()\nsucceeds, the error path calls rbd_free_disk() directly and then later\nfalls through to rbd_dev_device_release(), which calls rbd_free_disk()\nagain. This double teardown can leave blk-mq cleanup operating on\ninvalid state and trigger a null-ptr-deref in\n__blk_mq_free_map_and_rqs(), reached from blk_mq_free_tag_set().\n\nFix this by following the normal remove ordering: call device_del()\nbefore rbd_dev_device_release() when device_add_disk() fails after\ndevice_add(). That keeps the teardown sequence consistent and avoids\nre-entering disk cleanup through the wrong path.\n\nThe bug was first flagged by an experimental analysis tool we are\ndeveloping for kernel memory-management bugs while analyzing\nv6.13-rc1. The tool is still under development and is not yet publicly\navailable.\n\nWe reproduced the bug on v7.0 with a real Ceph backend and a QEMU x86_64\nguest booted with KASAN and CONFIG_FAILSLAB enabled. The reproducer\nconfines failslab injections to the __add_disk() range and injects\nfail-nth while mapping an RBD image through\n/sys/bus/rbd/add_single_major.\n\nOn the unpatched kernel, fail-nth=4 reliably triggered the fault:\n\n\tOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI\n\tKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n\tCPU: 0 UID: 0 PID: 273 Comm: bash Not tainted 7.0.0-01247-gd60bc1401583 #6 PREEMPT(lazy)\n\tHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014\n\tRIP: 0010:__blk_mq_free_map_and_rqs+0x8c/0x240\n\tCode: 00 00 48 8b 6b 60 41 89 f4 49 c1 e4 03 4c 01 e5 45 85 ed 0f 85 0a 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 e9 48 c1 e9 03 <80> 3c 01 00 0f 85 31 01 00 00 4c 8b 6d 00 4d 85 ed 0f 84 e2 00 00\n\tRSP: 0018:ff1100000ab0fac8 EFLAGS: 00000246\n\tRAX: dffffc0000000000 RBX: ff1100000c4806a0 RCX: 0000000000000000\n\tRDX: 0000000000000002 RSI: 0000000000000000 RDI: ff1100000c4806f4\n\tRBP: 0000000000000000 R08: 0000000000000001 R09: ffe21c000189001b\n\tR10: ff1100000c4800df R11: ff1100006cf37be0 R12: 0000000000000000\n\tR13: 0000000000000000 R14: ff1100000c480700 R15: ff1100000c480004\n\tFS:  00007f0fbe8fe740(0000) GS:ff110000e5851000(0000) knlGS:0000000000000000\n\tCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\tCR2: 00007fe53473b2e0 CR3: 0000000012eef000 CR4: 00000000007516f0\n\tPKRU: 55555554\n\tCall Trace:\n\t <TASK>\n\t blk_mq_free_tag_set+0x77/0x460\n\t do_rbd_add+0x1446/0x2b80\n\t ? __pfx_do_rbd_add+0x10/0x10\n\t ? lock_acquire+0x18c/0x300\n\t ? find_held_lock+0x2b/0x80\n\t ? sysfs_file_kobj+0xb6/0x1b0\n\t ? __pfx_sysfs_kf_write+0x10/0x10\n\t kernfs_fop_write_iter+0x2f4/0x4a0\n\t vfs_write+0x98e/0x1000\n\t ? expand_files+0x51f/0x850\n\t ? __pfx_vfs_write+0x10/0x10\n\t ksys_write+0xf2/0x1d0\n\t ? __pfx_ksys_write+0x10/0x10\n\t do_syscall_64+0x115/0x690\n\t entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\tRIP: 0033:0x7f0fbea15907\n\tCode: 10 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24\n\tRSP: 002b:00007ffe22346ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n\tRAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f0fbea15907\n\tRDX: 0000000000000058 RSI: 0000563ace6c0ef0 RDI: 0000000000000001\n\tRBP: 0000563ace6c0ef0 R08: 0000563ace6c0ef0 R09: 6b6435726d694141\n\tR10: 5250337279762f78 R11: 0000000000000246 R12: 0000000000000058\n\tR13: 00007f0fbeb1c780 R14: ff1100000c480700 R15: ff1100000c480004\n\t </TASK>\n\nWith this fix applied, rerunning the reproducer over fail-nth=1..256\nyields no KASAN reports.\n\n[ idryomov: rename err_out_device_del -> err_out_device ]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/059fb7656723c1b77c2fc0e64b7aa99d6bb65e8e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/2f4809a879f0750c7790bbeeae86c9505797a06f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/564cd8f4aeb9a938e470c5c91922fd02e4d41acc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ad0126ffcba8777109852979eaaa6dca6703abdb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d1fef92e414433ca7b89abf85cb0df42b8d475eb","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46080","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.397","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: split transactions in dio completion to avoid credit exhaustion\n\nDuring ocfs2 dio operations, JBD2 may report warnings via following\ncall trace:\nocfs2_dio_end_io_write\n ocfs2_mark_extent_written\n  ocfs2_change_extent_flag\n   ocfs2_split_extent\n    ocfs2_try_to_merge_extent\n     ocfs2_extend_rotate_transaction\n      ocfs2_extend_trans\n       jbd2__journal_restart\n        start_this_handle\n         output: JBD2: kworker/6:2 wants too many credits credits:5450 rsv_credits:0 max:5449\n\nTo prevent exceeding the credits limit, modify ocfs2_dio_end_io_write() to\nhandle extents in a batch of transaction.\n\nAdditionally, relocate ocfs2_del_inode_from_orphan().  The orphan inode\nshould only be removed from the orphan list after the extent tree update\nis complete.  This ensures that if a crash occurs in the middle of extent\ntree updates, we won't leave stale blocks beyond EOF.\n\nThis patch also changes the logic for updating the inode size and removing\norphan, making it similar to ext4_dio_write_end_io().  Both operations are\nperformed only when everything looks good.\n\nFinally, thanks to Jans and Joseph for providing the bug fix prototype and\nsuggestions."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/069c3fb310e9336cf48cfdf8748a32c29fd0193d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/3c636a3edca9c3f180b3079f94fe7e115730d9c6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/886f97fa59d0bbfa9859fb1a66dd9e014b522d89","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d647c5b2fbf81560818dacade360abc8c00a9665","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ea5bb1d20da756e4f41a48dad42b2e7d6e73f71e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46081","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.510","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: acomp - fix wrong pointer stored by acomp_save_req()\n\nacomp_save_req() stores &req->chain in req->base.data. When\nacomp_reqchain_done() is invoked on asynchronous completion, it receives\n&req->chain as the data argument but casts it directly to struct\nacomp_req. Since data points to the chain member, all subsequent field\naccesses are at a wrong offset, resulting in memory corruption.\n\nThe issue occurs when an asynchronous hardware implementation, such as\nthe QAT driver, completes a request that uses the DMA virtual address\ninterface (e.g. acomp_request_set_src_dma()). This combination causes\ncrypto_acomp_compress() to enter the acomp_do_req_chain() path, which\nsets acomp_reqchain_done() as the completion callback via\nacomp_save_req().\n\nWith KASAN enabled, this manifests as a general protection fault in\nacomp_reqchain_done():\n\n  general protection fault, probably for non-canonical address 0xe000040000000000\n  KASAN: probably user-memory-access in range [0x0000400000000000-0x0000400000000007]\n  RIP: 0010:acomp_reqchain_done+0x15b/0x4e0\n  Call Trace:\n   <IRQ>\n   qat_comp_alg_callback+0x5d/0xa0 [intel_qat]\n   adf_ring_response_handler+0x376/0x8b0 [intel_qat]\n   adf_response_handler+0x60/0x170 [intel_qat]\n   tasklet_action_common+0x223/0x820\n   handle_softirqs+0x1ab/0x640\n   </IRQ>\n\nFix this by storing the request itself in req->base.data instead of\n&req->chain, so that acomp_reqchain_done() receives the correct pointer.\nSimplify acomp_restore_req() accordingly to access req->chain directly."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1a2785e5985627f2265ba7775949601a29ba0d1e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/343a5bf68a8ff9affcf2b70677ea4cf40c195ee4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d7e20b9bd6c990773cf0c09e2642250b8a70263d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46082","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.617","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0\n\nINVLPGA should cause a #UD when EFER.SVME is not set. Add a check to\nproperly inject #UD when EFER.SVME=0.\n\n[sean: tag for stable@]"}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3ac9d4241d205f5d0df06358349ca718ebb0fa12","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/643125b66ffc1147c66616b749475ba9efb15971","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c15392ed9e49c1a16b4d3a3ccf1b3bf2318a6c28","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/d99df02ff427f461102230f9c5b90a6c64ee8e23","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ee24928ecd85db4b68ed111e91fef36af0ca37b0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46083","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.723","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix resource leaks on device setup failure\n\nMake sure to call controller cleanup() if spi_setup() fails while\nregistering a device to avoid leaking any resources allocated by\nsetup()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/11baa8b24bcb07ae2048f2566a220021d766abe0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/1e774294b2f944f59e03a04eb438768a4b93c3ce","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a2c817c629430fbbd54273525b472dac96e2c8fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/db357034f7e0cf23f233f414a8508312dfe8fbbe","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbcead54b12468d9aa54c0e1f0042d838ec3b0ae","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46084","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.833","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/mana_ib: Disable RX steering on RSS QP destroy\n\nWhen an RSS QP is destroyed (e.g. DPDK exit), mana_ib_destroy_qp_rss()\ndestroys the RX WQ objects but does not disable vPort RX steering in\nfirmware. This leaves stale steering configuration that still points to\nthe destroyed RX objects.\n\nIf traffic continues to arrive (e.g. peer VM is still transmitting) and\nthe VF interface is subsequently brought up (mana_open), the firmware\nmay deliver completions using stale CQ IDs from the old RX objects.\nThese CQ IDs can be reused by the ethernet driver for new TX CQs,\ncausing RX completions to land on TX CQs:\n\n  WARNING: mana_poll_tx_cq+0x1b8/0x220 [mana]  (is_sq == false)\n  WARNING: mana_gd_process_eq_events+0x209/0x290 (cq_table lookup fails)\n\nFix this by disabling vPort RX steering before destroying RX WQ objects.\nNote that mana_fence_rqs() cannot be used here because the fence\ncompletion is delivered on the CQ, which is polled by user-mode (e.g.\nDPDK) and not visible to the kernel driver.\n\nRefactor the disable logic into a shared mana_disable_vport_rx() in\nmana_en, exported for use by mana_ib, replacing the duplicate code.\nThe ethernet driver's mana_dealloc_queues() is also updated to call\nthis common function."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3be5ed233de03b00ae868cfc06e95331d8d9007c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6a2d6273b6c3581ce7b90ce17b5cbb4efd19438f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8ba804869382ce307f2a15f5f6f2adfd791f41dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/dbeb256e8dd87233d891b170c0b32a6466467036","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1ccc4d500a0b87a5599343fc2f798048836e184","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46085","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:29.963","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix rxkad crypto unalignment handling\n\nFix handling of a packet with a misaligned crypto length.  Also handle\nnon-ENOMEM errors from decryption by aborting.  Further, remove the\nWARN_ON_ONCE() so that it can't be remotely triggered (a trace line can\nstill be emitted)."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/440d20d95e844b657a93a0b2dcc2aae155efdce6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/af9271eb666d07b6f65612dc160a47f7cb5220ed","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/def304aae2edf321d2671fd6ca766a93c21f877e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f1c6bd0cc786a8fa74829ce3c4b3673944a308f4","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46086","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.080","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: use a stable FDB dst snapshot in RCU readers\n\nLocal FDB entries can be rewritten in place by `fdb_delete_local()`, which\nupdates `f->dst` to another port or to `NULL` while keeping the entry\nalive. Several bridge RCU readers inspect `f->dst`, including\n`br_fdb_fillbuf()` through the `brforward_read()` sysfs path.\n\nThese readers currently load `f->dst` multiple times and can therefore\nobserve inconsistent values across the check and later dereference.\nIn `br_fdb_fillbuf()`, this means a concurrent local-FDB update can change\n`f->dst` after the NULL check and before the `port_no` dereference,\nleading to a NULL-ptr-deref.\n\nFix this by taking a single `READ_ONCE()` snapshot of `f->dst` in each\naffected RCU reader and using that snapshot for the rest of the access\nsequence. Also publish the in-place `f->dst` updates in `fdb_delete_local()`\nwith `WRITE_ONCE()` so the readers and writer use matching access patterns."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0b9e4bbfb7c949151e3acd44ed4aa33614d2e110","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5424e678f9b304e148cf5dcc047cffc7a56a3bb5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/81af4137a30c4c2dc694dea8cacb180bd66000ef","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9a2d9d4e657b23dc21f24cf139e3aeff0b61341f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/df4601653201de21b487c3e7fffd464790cab808","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46087","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.203","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/stat: fix memory leak on damon_start() failure in damon_stat_start()\n\nDestroy the DAMON context and reset the global pointer when damon_start()\nfails.  Otherwise, the context allocated by damon_stat_build_ctx() is\nleaked, and the stale damon_stat_context pointer will be overwritten on\nthe next enable attempt, making the old allocation permanently\nunreachable."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/50bc1d7e0f3bb6932c8dc5da0907eead0790176b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8a62c58411cbd748d7aeab0e5b0963e33ff47a7a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e04ed278d25bf15769800bf6e35c6737f137186f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46088","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.333","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names()\n\nsnd_ctl_elem_init_enum_names() advances pointer p through the names\nbuffer while decrementing buf_len. If buf_len reaches zero but items\nremain, the next iteration calls strnlen(p, 0).\n\nWhile strnlen(p, 0) returns 0 and would hit the existing name_len == 0\nerror path, CONFIG_FORTIFY_SOURCE's fortified strnlen() first checks\nmaxlen against __builtin_dynamic_object_size(). When Clang loses track\nof p's object size inside the loop, this triggers a BRK exception panic\nbefore the return value is examined.\n\nAdd a buf_len == 0 guard at the loop entry to prevent calling fortified\nstrnlen() on an exhausted buffer.\n\nFound by kernel fuzz testing through Xiaomi Smartphone."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/1fbe46d2b72754d8bd580e13e59ccb5d3d0e8cb0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/654c818a69c21d2bea4e8fd9eae7da865df9a5c8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/82012fd3e78a14360fbc2f1a7491589896704f97","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/8ba0214c3dd32b8ec652947e3f2bc5b8f6e6be9e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e0da8a8cac74f4b9f577979d131f0d2b88a84487","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46089","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.443","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nzram: do not forget to endio for partial discard requests\n\nAs reported by Qu Wenruo and Avinesh Kumar, the following\n\n getconf PAGESIZE\n 65536\n blkdiscard -p 4k /dev/zram0\n\ntakes literally forever to complete.  zram doesn't support partial\ndiscards and just returns immediately w/o doing any discard work in such\ncases.  The problem is that we forget to endio on our way out, so\nblkdiscard sleeps forever in submit_bio_wait().  Fix this by jumping to\nend_bio label, which does bio_endio()."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2d1f18efccdb8b29552399d024c36b705447e975","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/35d3300f6357cfaa72db2721dc2b345b19bac5df","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/68ce397e8236088fc53b9532d383a722288c8194","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a02363f71a79b755daa78a70d6b217f9c13c8c85","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e3668b371329ea036ff022ce8ecc82f8befcf003","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46090","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.547","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: aloop: Fix peer runtime UAF during format-change stop\n\nloopback_check_format() may stop the capture side when playback starts\nwith parameters that no longer match a running capture stream. Commit\n826af7fa62e3 (\"ALSA: aloop: Fix racy access at PCM trigger\") moved\nthe peer lookup under cable->lock, but the actual snd_pcm_stop() still\nruns after dropping that lock.\n\nA concurrent close can clear the capture entry from cable->streams[] and\ndetach or free its runtime while the playback trigger path still holds a\nstale peer substream pointer.\n\nKeep a per-cable count of in-flight peer stops before dropping\ncable->lock, and make free_cable() wait for those stops before\ndetaching the runtime. This preserves the existing behavior while\nmaking the peer runtime lifetime explicit."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/03f52a9c170431e8f10e156b9dc0dae80b3e9198","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5d45e34bf001344e2966dabca1897561bbc9e913","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bdd9503c3d222d2735b56c7a8b4422ccf3de6e5c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e5c33cdc6f402eab8abd36ecf436b22c9d3a8aff","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46091","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.647","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: rc: igorplugusb: heed coherency rules\n\nIn a control request, the USB request structure\ncan be subject to DMA on some HCs. Hence it must obey\nthe rules for DMA coherency. Allocate it separately."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/0adac0ee2c42027d80bac02ea9b576a88f8955d3","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/0be8fcd9005e3d3b5a61fe34b070a9663adbb4dc","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/18d6a7c9e4e63c57157e9a57dd9bf3cd38e4c45a","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a62ca67e3c72fb297dc7c86495ba8f7329d7f150","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eac69475b01fe1e861dfe3960b57fa95671c132e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46092","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.757","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: check for PCI upstream bridge existence\n\npci_upstream_bridge() returns NULL if the device is on a root bus.  If\n8821CE is installed in the system with such a PCI topology, the probing\nroutine will crash.  This has probably been unnoticed as 8821CE is mostly\nsupplied in laptops where there is a PCI-to-PCI bridge located upstream\nfrom the device.  However the card might be installed on a system with\ndifferent configuration.\n\nCheck if the bridge does exist for the specific workaround to be applied.\n\nFound by Linux Verification Center (linuxtesting.org) with Svace static\nanalysis tool."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/eb101d2abdcccb514ca4fccd3b278dd8267374f6","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46093","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.860","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmalloc: take vmap_purge_lock in shrinker\n\ndecay_va_pool_node() can be invoked concurrently from two paths:\n__purge_vmap_area_lazy() when pools are being purged, and the shrinker via\nvmap_node_shrink_scan().\n\nHowever, decay_va_pool_node() is not safe to run concurrently, and the\nshrinker path currently lacks serialization, leading to races and possible\nleaks.\n\nProtect decay_va_pool_node() by taking vmap_purge_lock in the shrinker\npath to ensure serialization with purge users."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/12f2341b4c235d5593a433abac201c1c6725787f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/687ccdf582169cd680aeaf24cc953807c4cd4345","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ec05f51f1e65bce95528543eb73fda56fd201d94","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46094","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:30.963","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix bounds check in check_xattrs() to prevent out-of-bounds access\n\nThe bounds check for the next xattr entry in check_xattrs() uses\n(void *)next >= end, which allows next to point within sizeof(u32)\nbytes of end. On the next loop iteration, IS_LAST_ENTRY() reads 4\nbytes via *(__u32 *)(entry), which can overrun the valid xattr region.\n\nFor example, if next lands at end - 1, the check passes since\nnext < end, but IS_LAST_ENTRY() reads 4 bytes starting at end - 1,\naccessing 3 bytes beyond the valid region.\n\nFix this by changing the check to (void *)next + sizeof(u32) > end,\nensuring there is always enough space for the IS_LAST_ENTRY() read\non the subsequent iteration."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/520986722dbf869c122252123fc161c7302eab7d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/537e065977022aa22f2c2503e8accaf16622e0fd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5a5314d2387633a272a04d1bd8727f99058e4e68","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ab6da97bc310db35d4e4ef5354bc3ff626b0698c","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/eceafc31ea7b42c984ece10d79d505c0bb6615d5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46095","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.113","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd/md-llbitmap: raise barrier before state machine transition\n\nMove the barrier raise operation before calling llbitmap_state_machine()\nin both llbitmap_start_write() and llbitmap_start_discard(). This\nensures the barrier is in place before any state transitions occur,\npreventing potential race conditions where the state machine could\ncomplete before the barrier is properly raised."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9142f00a9287ca38152717e3e88a033a27774e7f","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9701d51dd378380ba05293fa391e8ba01065ae8d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ef4ca3d4bf09716cff9ba00eb0351deadc8417ab","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46096","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.220","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ntpm2-sessions: Fix missing tpm_buf_destroy() in tpm2_read_public()\n\ntpm2_read_public() calls tpm_buf_init() but fails to call\ntpm_buf_destroy() on two exit paths, leaking a page allocation:\n\n1. When name_size() returns an error (unrecognized hash algorithm),\n   the function returns directly without destroying the buffer.\n\n2. On the success path, the buffer is never destroyed before\n   returning.\n\nAll other error paths in the function correctly call\ntpm_buf_destroy() before returning.\n\nFix both by adding the missing tpm_buf_destroy() calls."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/2f434be87e256fd58254f60ddf5d7d58e775ca0b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f0f75a3d98b7959a8677b6363e23190f3018636b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f8775d9d9062da662cc861f9ff7722a65896d4cd","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46097","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.333","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nInput: edt-ft5x06 - fix use-after-free in debugfs teardown\n\nThe commit 68743c500c6e (\"Input: edt-ft5x06 - use per-client debugfs\ndirectory\") removed the manual debugfs teardown, relying on the I2C core\nto handle it. However, this creates a window where debugfs files are\nstill accessible after edt_ft5x06_ts_teardown_debugfs() frees\ntsdata->raw_buffer.\n\nTo prevent a use-after-free, protect the freeing of raw_buffer with the\ndevice mutex and set raw_buffer to NULL. The debugfs read function\nalready checks if raw_buffer is NULL under the same mutex, so this\nsafely avoids the use-after-free."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/9f6c5e7b747d40e1c65cbfcb975857d25154c075","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a516d43886623e3cca5fa3446bed8fc7c7982be2","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f5f9e07060519e2287e99019a6de1eb3ebb65c37","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46098","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.453","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: caif: clear client service pointer on teardown\n\n`caif_connect()` can tear down an existing client after remote shutdown by\ncalling `caif_disconnect_client()` followed by `caif_free_client()`.\n`caif_free_client()` releases the service layer referenced by\n`adap_layer->dn`, but leaves that pointer stale.\n\nWhen the socket is later destroyed, `caif_sock_destructor()` calls\n`caif_free_client()` again and dereferences the freed service pointer.\n\nClear the client/service links before releasing the service object so\nrepeated teardown becomes harmless."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/3ac6db584d9d420267bb8413115707eeec76d9cf","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/63d21a3aa0108b9dde4e99b0d3d5d679ac68c0f9","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/914c6456fcfc21a3d553945dff62fd1621d6155d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/a4b191ddc12c55ddb62feb096536f819f384d6f1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f7cf8ece8cee3c1ee361991470cdb1eb65ab02e8","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46099","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.557","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels\n\nseg6_input_core() and rpl_input() call ip6_route_input() which sets a\nNOREF dst on the skb, then pass it to dst_cache_set_ip6() invoking\ndst_hold() unconditionally.\nOn PREEMPT_RT, ksoftirqd is preemptible and a higher-priority task can\nrelease the underlying pcpu_rt between the lookup and the caching\nthrough a concurrent FIB lookup on a shared nexthop.\nSimplified race sequence:\n\n  ksoftirqd/X                       higher-prio task (same CPU X)\n  -----------                       --------------------------------\n  seg6_input_core(,skb)/rpl_input(skb)\n    dst_cache_get()\n      -> miss\n    ip6_route_input(skb)\n      -> ip6_pol_route(,skb,flags)\n         [RT6_LOOKUP_F_DST_NOREF in flags]\n        -> FIB lookup resolves fib6_nh\n           [nhid=N route]\n        -> rt6_make_pcpu_route()\n           [creates pcpu_rt, refcount=1]\n             pcpu_rt->sernum = fib6_sernum\n             [fib6_sernum=W]\n           -> cmpxchg(fib6_nh.rt6i_pcpu,\n                      NULL, pcpu_rt)\n              [slot was empty, store succeeds]\n      -> skb_dst_set_noref(skb, dst)\n         [dst is pcpu_rt, refcount still 1]\n\n                                    rt_genid_bump_ipv6()\n                                      -> bumps fib6_sernum\n                                         [fib6_sernum from W to Z]\n                                    ip6_route_output()\n                                      -> ip6_pol_route()\n                                        -> FIB lookup resolves fib6_nh\n                                           [nhid=N]\n                                        -> rt6_get_pcpu_route()\n                                             pcpu_rt->sernum != fib6_sernum\n                                             [W <> Z, stale]\n                                          -> prev = xchg(rt6i_pcpu, NULL)\n                                          -> dst_release(prev)\n                                             [prev is pcpu_rt,\n                                              refcount 1->0, dead]\n\n    dst = skb_dst(skb)\n    [dst is the dead pcpu_rt]\n    dst_cache_set_ip6(dst)\n      -> dst_hold() on dead dst\n      -> WARN / use-after-free\n\nFor the race to occur, ksoftirqd must be preemptible (PREEMPT_RT without\nPREEMPT_RT_NEEDS_BH_LOCK) and a concurrent task must be able to release\nthe pcpu_rt. Shared nexthop objects provide such a path, as two routes\npointing to the same nhid share the same fib6_nh and its rt6i_pcpu\nentry.\n\nFix seg6_input_core() and rpl_input() by calling skb_dst_force() after\nip6_route_input() to force the NOREF dst into a refcounted one before\ncaching.\nThe output path is not affected as ip6_route_output() already returns a\nrefcounted dst."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/52f9db67f8f35f436366cf4980b4f0a2583d0ef0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/6bd17925bd6866027a6555db17905b9fc073d38d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/9dd5481f960e337b81d7dfe429529495c1c481c0","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/b778b6d095421619c331fd2d7751143cd5387103","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f9c52a6ba9780bd27e0bf4c044fd91c13c778b6e","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46100","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:31.877","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs: afs: revert mmap_prepare() change\n\nPartially reverts commit 9d5403b1036c (\"fs: convert most other\ngeneric_file_*mmap() users to .mmap_prepare()\").\n\nThis is because the .mmap invocation establishes a refcount, but\n.mmap_prepare is called at a point where a merge or an allocation failure\nmight happen after the call, which would leak the refcount increment.\n\nFunctionality is being added to permit the use of .mmap_prepare in this\ncase, but in the interim, we need to fix this."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/48c7a0eaeea41da17d1d84d2d7a4c40be122b246","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f51f85c044809fbd39ac8ae07ac99bc43ce32bd5","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fbfc6578eaca12daa0c09df1e9ba7f2c657b49da","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46101","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:32.147","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: reject zero shift in nft_bitwise\n\nReject zero shift operands for nft_bitwise left and right shift\nexpressions during initialization.\n\nThe carry propagation logic computes the carry from the adjacent 32-bit\nword using BITS_PER_TYPE(u32) - shift. A zero shift operand turns this\ninto a 32-bit shift, which is undefined behaviour.\n\nReject zero shift operands in the control plane, alongside the existing\ncheck for values greater than or equal to 32, so malformed rules never\nreach the packet path."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/6f820139d16a4c9865a145d4a9cf9c92cc632c14","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/bffef0acec9c3b837a785248a893137fb7f26c95","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/ca24f1243ad1a4d12d6a23876bbbe3ed02099853","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/f370205974f171a5868c13ff30d7642fed46e47b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fe11e5c40817b84abaa5d83bfb6586d8412bfd07","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46102","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:32.323","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: strparser: fix skb_head leak in strp_abort_strp()\n\nWhen the stream parser is aborted, for example after a message assembly timeout,\nit can still hold a reference to a partially assembled message in\nstrp->skb_head.\n\nThat skb is not released in strp_abort_strp(), which leaks the partially\nassembled message and can be triggered repeatedly to exhaust memory.\n\nFix this by freeing strp->skb_head and resetting the parser state in the\nabort path. Leave strp_stop() unchanged so final cleanup still happens in\nstrp_done() after the work and timer have been synchronized."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/19ca9475f18f991735f98a22e735c43e95e6298d","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/5327dad2ffe9c1b49881dd6d51ff3c6893847568","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/56082f442023db9be1a5a29d4ee361de4017c0b7","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/e9ae00490d474757c0f9c65073de83e6bb1e5a00","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fe72340daaf1af588be88056faf98965f39e6032","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-46103","sourceIdentifier":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","published":"2026-05-27T14:17:32.457","lastModified":"2026-05-27T14:48:03.013","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncan: ucan: fix devres lifetime\n\nUSB drivers bind to USB interfaces and any device managed resources\nshould have their lifetime tied to the interface rather than parent USB\ndevice. This avoids issues like memory leaks when drivers are unbound\nwithout their devices being physically disconnected (e.g. on probe\ndeferral or configuration changes).\n\nFix the control message buffer lifetime so that it is released on driver\nunbind."}],"metrics":{},"references":[{"url":"https://git.kernel.org/stable/c/10b7b676b78a7bd888d19729b459aad7fc1f428b","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/4b7d07747400cfd7eff1ba7b8b5a7c8d5a58f705","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c0d3ccc6929e4509076df8f30a4fb1dc5018b0ae","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/c524c124e3094d2de12235a513854c03d06a2b58","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"},{"url":"https://git.kernel.org/stable/c/fed4626501c871890da287bec62a96e52da1af89","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67"}]}},{"cve":{"id":"CVE-2026-48971","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T14:17:33.037","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in WebToffee Product Import Export for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.\n\nThis issue affects Product Import Export for WooCommerce: from n/a through 2.5.6."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/product-import-export-for-woo/vulnerability/wordpress-product-import-export-for-woocommerce-plugin-2-5-6-broken-access-control-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-48972","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T14:17:33.173","lastModified":"2026-05-27T14:50:47.627","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in SeedProd LLC SeedProd Pro allows PHP Local File Inclusion.\n\nThis issue affects SeedProd Pro: from n/a before 6.19.5."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":5.9}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-98"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/seedprod-coming-soon-pro-5/vulnerability/wordpress-seedprod-pro-plugin-6-19-5-local-file-inclusion-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2026-4410","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:33.660","lastModified":"2026-05-27T17:16:44.377","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application Server 9.0, and 8.5 and WebSphere Application Server Liberty are vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273424","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-5065","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:33.947","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273004","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-5515","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.137","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM App Connect Enterprise 13.0.1.0 through 13.0.7.0 stores potentially sensitive information in log files that could be read by a local user."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"references":[{"url":"https://www.ibm.com/support/pages/node/7272270","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-5516","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.257","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM WebSphere Application Server - Liberty 22.0.0.11 through 26.0.0.5 IBM WebSphere Application Server Liberty could allow a remote attacker to bypass security under limited conditions by exploiting a specific timing window."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.7,"impactScore":3.6}]},"references":[{"url":"https://www.ibm.com/support/pages/node/7273425","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-6051","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.370","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service when executing a specially crafted query with a small statement heap."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273558","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-6052","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.513","lastModified":"2026-05-27T17:16:45.313","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory when executing certain queries with MDC tables."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273557","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-6053","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.633","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service when a specially crafted query is run with range partitioned tables."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273556","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-6936","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:34.923","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM i 7.6, 7.5, 7.4, and 7.3 s vulnerable to a denial-of-service attack due to uncontrolled recursion in the Integrated Language Environment (ILE) compiler. An authenticated attacker could exploit this vulnerability by compiling specially crafted source code containing a specific combination of statements."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-674"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272908","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-6938","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.050","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 12.1.0 through 12.1.4 is vulnerable to authorization bypass when uploading to a remote object storage path with a special query."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-285"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273559","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-7254","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.173","lastModified":"2026-05-27T15:16:35.030","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM OPENBMC FW1110.00 through FW1110.11 is vulnerable to denial of service attacks by unauthenticated network users."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272993","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-7365","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.280","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an attacker to bypass authentication."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":8.4,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-1392"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7272268","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-7524","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.443","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273426","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-7528","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.583","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Langflow OSS 1.0.0 through 1.9.0 could allow a denial of service due to uncontrolled resource consumption."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273427","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-7876","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.727","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera HSTS for CP4I 1.5.1 through 1.5.19"}],"metrics":{},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7274127","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-8175","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:35.970","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to cause a denial of service and potentially lead to authentication bypass or remote code execution."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-122"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273615","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-8179","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:36.127","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could allow an authenticated user to execute arbitrary code on the system."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273615","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-8180","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:38.170","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a potential denial of service in the asperahttpd component. An unauthenticated user can cause the asperahttpd service to crash."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273615","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-8405","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:38.490","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named \"Long Term Retention\" (LTR) can expose sensitive credentials in debug mode."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273657","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-9035","sourceIdentifier":"psirt@us.ibm.com","published":"2026-05-27T14:17:38.913","lastModified":"2026-05-27T14:53:51.833","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a potential arbitrary file read in the asperahttpd component. An authenticated user may be able to take advantage of this vulnerability to access files in the server’s local storage that they should not have access to."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7273615","source":"psirt@us.ibm.com"}]}},{"cve":{"id":"CVE-2026-9617","sourceIdentifier":"f86ef6dc-4d3a-42ad-8f28-e6d5547a5007","published":"2026-05-27T14:17:40.273","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a table and placing malicious code inside a column identifier. If a superuser calls the k-anonymity function, the malicious code is executed with superuser privileges. The risk is higher with PostgreSQL 14 or with instances upgraded from PostgreSQL 14 or a prior version. With PostgreSQL 15 and later, the creation permission on the public schema is revoked by default and this exploit can only be achieved by a user who was explicitly granted the CREATE TABLE privilege. The problem is resolved in PostgreSQL Anonymizer 3.1.0 and further versions"}],"metrics":{"cvssMetricV31":[{"source":"f86ef6dc-4d3a-42ad-8f28-e6d5547a5007","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":5.9}]},"weaknesses":[{"source":"f86ef6dc-4d3a-42ad-8f28-e6d5547a5007","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://gitlab.com/dalibo/postgresql_anonymizer/-/issues/640","source":"f86ef6dc-4d3a-42ad-8f28-e6d5547a5007"}]}},{"cve":{"id":"CVE-2026-9704","sourceIdentifier":"secalert@redhat.com","published":"2026-05-27T14:17:40.480","lastModified":"2026-05-27T14:54:20.160","vulnStatus":"Undergoing Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subject_token JSON Web Token (JWT) to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client credentials. This allows the user to gain the permissions of the client's service account, leading to privilege escalation."}],"metrics":{"cvssMetricV31":[{"source":"secalert@redhat.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":5.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Primary","description":[{"lang":"en","value":"CWE-1284"}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2026-9704","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2481877","source":"secalert@redhat.com"}]}},{"cve":{"id":"CVE-2026-42184","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:27.560","lastModified":"2026-05-27T17:16:35.480","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Tauri is a framework for building binaries for all major desktop platforms. From 2.0 to 2.11.0, a flaw in Tauri's is_local_url() function causes it to incorrectly classify remote URLs as trusted local origins on Windows and Android. On these systems, Tauri maps custom URI scheme protocols to http://<scheme>.localhost/ because those platforms' WebView implementations cannot serve custom URI schemes directly. The issue is that Tauri's check to see if the origin is local, only checks the first subdomain of the URL. An attacker can abuse this by hosting a page on a domain whose subdomain matches the custom scheme of the application. This vulnerability is fixed in 2.10.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/tauri-apps/tauri/security/advisories/GHSA-7gmj-67g7-phm9","source":"security-advisories@github.com"},{"url":"https://github.com/tauri-apps/tauri/security/advisories/GHSA-7gmj-67g7-phm9","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-42280","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:27.753","lastModified":"2026-05-27T15:16:27.753","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Auth0.js is a client-side JavaScript library for Auth0. From 8.11.0 to 9.32.0, under specific preconditions, the Auth0.js SDK may improperly return user profile information using a valid access token when a specifically crafted invalid ID token is provided. This vulnerability is fixed in 10.0.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/auth0/auth0.js/security/advisories/GHSA-8qjv-jj2q-x832","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44830","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:28.297","lastModified":"2026-05-27T15:16:28.297","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Nocturne Memory is a lightweight, rollbackable, and visual Long-Term Memory Server for MCP Agents. Prior to 2.4.1, when API_TOKEN is unset or empty, the BearerTokenAuthMiddleware bypasses authentication for all HTTP requests. Combined with the default 0.0.0.0 host binding and CORS allow_origins=[\"*\"], operators following the Docker setup without explicitly setting API_TOKEN expose the full Knowledge-Graph read/write API to any LAN-reachable client. An attacker on the same network can read, write, or delete all memory entries — including system://boot and core://* URIs that auto-load into downstream agent sessions, enabling persistent prompt-injection. This vulnerability is fixed in 2.4.1."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":8.7,"baseSeverity":"HIGH","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/Dataojitori/nocturne_memory/security/advisories/GHSA-crr4-xrj9-ww8g","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44838","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:28.743","lastModified":"2026-05-27T15:16:28.743","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin allows for topic-level authorization using regular expressions with variable substitution. Administrators can create patterns such as ^{client_id}-sensors$ to restrict user access to topics that include their client ID. However, the client_id is provided by the user in the MQTT CONNECT packet and is inserted into the regex pattern without escaping special regex characters. This flaw enables an authenticated MQTT user to inject regex operators to bypass authorization. This vulnerability is fixed in 4.2.4 and 4.3.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"HIGH","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-x866-xp2g-cx8v","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44839","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.073","lastModified":"2026-05-27T15:16:29.073","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"RabbitMQ is a messaging and streaming broker. From 3.7.0 to before 4.1.2 and 4.0.13,  This vulnerability is fixed in 4.1.2 and 4.0.13."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"ACTIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-80"}]}],"references":[{"url":"https://github.com/rabbitmq/rabbitmq-server/commit/7f54319279d1ece161ae0b4cdc6f0e58a4045eb5","source":"security-advisories@github.com"},{"url":"https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-fh5r-jpm3-fjwp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44902","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.313","lastModified":"2026-05-27T15:16:29.313","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"opentelemetry-js is the OpenTelemetry JavaScript Client. Prior to 0.217.0, a single malformed HTTP request crashes any Node.js process running the OpenTelemetry JS Prometheus exporter. The metrics endpoint (default 0.0.0.0:9464) has no error handling around URL parsing, so a request with an invalid URI causes an uncaught TypeError that terminates the process. This vulnerability is fixed in 0.217.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-755"}]}],"references":[{"url":"https://github.com/open-telemetry/opentelemetry-js/security/advisories/GHSA-q7rr-3cgh-j5r3","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44971","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.547","lastModified":"2026-05-27T17:16:39.983","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"GuardDog is a CLI tool to identify malicious PyPI packages. From 1.0.0 to 2.9.0, the programmatic remote project scanning path rewrites attacker-controlled repository URLs using a blind string replacement and then sends the caller's GitHub credentials with the resulting request. This allows an attacker who can influence the scanned repository URL to trigger SSRF and capture the GH_TOKEN used by GuardDog. This vulnerability is fixed in ."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"references":[{"url":"https://github.com/DataDog/guarddog/security/advisories/GHSA-587r-mc96-6f2p","source":"security-advisories@github.com"},{"url":"https://github.com/DataDog/guarddog/security/advisories/GHSA-587r-mc96-6f2p","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-44972","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.690","lastModified":"2026-05-27T15:16:29.690","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject ANSI or OSC escape sequences into analyst terminals or CI logs."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":2.7}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-116"}]}],"references":[{"url":"https://github.com/DataDog/guarddog/security/advisories/GHSA-m5p4-gvpx-4mvr","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44988","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.830","lastModified":"2026-05-27T15:16:29.830","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"LibVNCClient is a library for easy implementation of a VNC client. In 0.9.15 and earlier, LibVNCClient's Tight encoding decoder uses fixed-size 2048-pixel scratch buffers for the Gradient filter, but it does not reject Tight rectangles whose width is larger than 2048 pixels. A malicious VNC server can send a crafted FramebufferUpdate rectangle using Tight encoding with NoZlib | ExplicitFilter and the Gradient filter. When a LibVNCClient-based client connects, the client processes the server-controlled rectangle width and writes beyond fixed-size Gradient buffers. This vulnerability is fixed with commit 5b270544b85233668b98161323297d418a8f5fd1."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"references":[{"url":"https://github.com/LibVNC/libvncserver/commit/5b270544b85233668b98161323297d418a8f5fd1","source":"security-advisories@github.com"},{"url":"https://github.com/LibVNC/libvncserver/security/advisories/GHSA-jcc5-8wj4-7c58","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45022","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:29.980","lastModified":"2026-05-27T15:16:29.980","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.0 and 6.0.0-alpha.3, go-git may parse malformed Git objects in a way that differs from upstream Git. When commit or tag objects contain ambiguous or malformed headers, go-git’s decoded representation may expose values differently from how Git itself would interpret or reject the same object. Additionally, go-git’s commit signing and verification logic operates over commit data reconstructed from go-git’s parsed representation rather than the original raw object bytes. As a result, go-git may sign or verify a commit payload that is not byte-for-byte equivalent to the object stored in the repository. This can cause a signature to appear valid for a commit whose displayed or effective metadata differs from the object that was intended to be signed. This vulnerability is fixed in 5.19.0 and 6.0.0-alpha.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-180"},{"lang":"en","value":"CWE-345"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-389r-gv7p-r3rp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45570","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:30.240","lastModified":"2026-05-27T15:16:30.240","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, go-git's SSH transport constructs the remote exec command by wrapping the repository path in single quotes without escaping single quotes embedded inside the path. A repository path containing a single quote can therefore break out of the quoted region in the exec command and be appended as additional shell tokens. This vulnerability is fixed in 5.19.1 and 6.0.0-alpha.4."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":2.3,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"LOW","subIntegrityImpact":"LOW","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-116"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-m7cr-m3pv-hgrp","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45571","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T15:16:30.387","lastModified":"2026-05-27T15:16:30.387","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, a path validation issue in go-git could allow crafted repository data to affect files outside the intended checkout target, including the repository's .git directory. These validations were introduced in upstream Git years ago, so the vulnerability arose from go-git drifting from those checks. This vulnerability is fixed in 5.19.1 and 6.0.0-alpha.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://github.com/go-git/go-git/security/advisories/GHSA-crhj-59gh-8x96","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-48545","sourceIdentifier":"disclosure@vulncheck.com","published":"2026-05-27T15:16:31.020","lastModified":"2026-05-27T17:16:41.933","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote attackers to perform cross-Space session fixation by exploiting a shared module-level HTTP client used across all users in the reverse proxy endpoint. Attackers controlling any HF Space can return a parent-domain cookie that the shared client stores and automatically replays into all subsequent proxy requests to other legitimate Spaces, affecting all users of the same Gradio deployment."}],"metrics":{"cvssMetricV40":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"PASSIVE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"disclosure@vulncheck.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":5.2}]},"weaknesses":[{"source":"disclosure@vulncheck.com","type":"Secondary","description":[{"lang":"en","value":"CWE-384"}]}],"references":[{"url":"https://github.com/gradio-app/gradio/commit/feb7237d01f359d2ad4ee42d00344e61692b3b39","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/issues/13369","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/pull/13384","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.15.0","source":"disclosure@vulncheck.com"},{"url":"https://www.vulncheck.com/advisories/gradio-cookie-injection-via-shared-pro","source":"disclosure@vulncheck.com"},{"url":"https://github.com/gradio-app/gradio/issues/13369","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}},{"cve":{"id":"CVE-2026-6957","sourceIdentifier":"responsibledisclosure@mattermost.com","published":"2026-05-27T15:16:34.903","lastModified":"2026-05-27T15:16:34.903","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federated Mattermost server to write files to arbitrary locations within the target server's filestore via a malicious filename delivered through the shared-channel attachment sync protocol. Mattermost Advisory ID: MMSA-2026-00659"}],"metrics":{"cvssMetricV31":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H","baseScore":8.0,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.3,"impactScore":6.0}]},"weaknesses":[{"source":"responsibledisclosure@mattermost.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://mattermost.com/security-updates","source":"responsibledisclosure@mattermost.com"}]}},{"cve":{"id":"CVE-2025-70116","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T17:16:29.187","lastModified":"2026-05-27T17:16:29.187","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"A NULL pointer dereference in GPAC MP4Box: when parsing certain truncated MP4 files, an unknown/invalid stsd entry can result in missing descriptor fields (e.g., codec/mime/profile strings). gf_media_map_esd then calls strlen() on a NULL pointer, triggering a crash (ASan SEGV)."}],"metrics":{},"references":[{"url":"https://github.com/gpac/gpac/issues/3345","source":"cve@mitre.org"},{"url":"https://github.com/sigdevel/pocs/blob/main/res/gpac/MP4Box/68/68_gf_media_map_esd_media_tools_isom_tools_c_1364","source":"cve@mitre.org"},{"url":"https://infosec.exchange/@sigdevel/116624563750949972","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-49054","sourceIdentifier":"audit@patchstack.com","published":"2026-05-27T17:16:44.170","lastModified":"2026-05-27T17:44:01.027","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in Mamunur Rashid The Post Grid allows Exploiting Incorrectly Configured Access Control Security Levels.\n\nThis issue affects The Post Grid: from n/a through 7.9.2."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/wordpress/plugin/the-post-grid/vulnerability/wordpress-the-post-grid-plugin-7-9-2-broken-access-control-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}},{"cve":{"id":"CVE-2025-67903","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T18:16:21.507","lastModified":"2026-05-27T18:16:21.507","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Northern.tech Mender Client 5 before 5.0.4 allows a Cryptographic signature verification bypass."}],"metrics":{},"references":[{"url":"https://mender.io/blog/cve-2025-67903-signature-verification-bypass-in-mender-client","source":"cve@mitre.org"},{"url":"https://northern.tech","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2025-69600","sourceIdentifier":"cve@mitre.org","published":"2026-05-27T18:16:21.780","lastModified":"2026-05-27T18:16:21.780","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Command injection in Raynet rvia 12.6.4392.49-amd64.deb allows adversaries to execute commands via getconfig, and upload through the URL argument, and oracle through the -o flag The Supplier's perspective is that this is caused by Argument Injection in the find command query in rvia 12.6.4392.49. This in an arbitrary code execution flaw caused by an incorrectly constructed find command. The application actively searches for a Java executable by using search criteria that is not properly terminated or sanitized. By constructing a crafted directory path that satisfies the malformed search criteria, an attacker can trick the application into executing arbitrary Java code. This differs from standard PATH manipulation because it stems from the application's internal search logic. Specifically, a local attacker can create a crafted directory structure and path that satisfies an improperly terminated find query used by the application to locate a Java runtime."}],"metrics":{},"references":[{"url":"https://github.com/Wise-Security/CVE-2025-69600","source":"cve@mitre.org"},{"url":"https://support.raynet.de/hc/en-us/articles/19518792826132-RVY200865-RayVentory-12-6","source":"cve@mitre.org"}]}},{"cve":{"id":"CVE-2026-42328","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:22.653","lastModified":"2026-05-27T18:16:22.653","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"go-ipld-prime is an implementation of the InterPlanetary Linked Data (IPLD) spec interfaces, a batteries-included codec implementations of IPLD for CBOR and JSON, and tooling for basic operations on IPLD objects. Prior to 0.23.0, the DAG-CBOR and DAG-JSON decoders recurse on each nested map or list without a depth limit. A payload containing deeply nested collections causes the decoder to recurse once per level, growing the goroutine stack until the Go runtime terminates the process with a fatal stack overflow (distinct from a recoverable panic). This vulnerability is fixed in 0.23.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-674"}]}],"references":[{"url":"https://github.com/ipld/go-ipld-prime/security/advisories/GHSA-w239-58x2-q8p5","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-42553","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:22.857","lastModified":"2026-05-27T18:16:22.857","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Cinny is a Matrix client. Prior to 4.10.3, A remote authenticated attacker who shares a room with a victim and has permissions to create room emotes (for example in a DM) can cause the victim's client to send their Matrix access token to an attacker-controlled server. This occurs when the victim opens the emoji or sticker picker for the room containing a malicious emote pack. This is caused by an incorrect fallback in EmojiBoard that uses untrusted pack.meta.avatar (user-controlled) without converting/validating it as an MXC URL, allowing arbitrary HTTP(S) URLs to be used. Also, the service worker attaching the user's Authorization bearer token to all outbound GET requests whose URL contains /_matrix/client/v1/media/download or /_matrix/client/v1/media/thumbnail without verifying the request host matches the configured homeserver origin. An attacker-controlled URL containing those path fragments and permissive CORS will receive the victim's Authorization header (access token). This vulnerability is fixed in 4.10.3."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://github.com/cinnyapp/cinny/releases/tag/v4.10.3","source":"security-advisories@github.com"},{"url":"https://github.com/cinnyapp/cinny/security/advisories/GHSA-j944-w549-3453","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44346","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.333","lastModified":"2026-05-27T18:16:23.333","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.39, a malicious bentofile.yaml containing a newline-injected value in envs[*].name produces unquoted RUN directives in the BentoML-generated Dockerfile. When the victim runs bentoml containerize on the imported bento, those RUN directives execute on the host during docker build. This vulnerability is fixed in 1.4.39."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-78"},{"lang":"en","value":"CWE-94"}]}],"references":[{"url":"https://github.com/bentoml/BentoML/security/advisories/GHSA-w2pm-x38x-jp44","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44378","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.470","lastModified":"2026-05-27T18:16:23.470","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Botan is a C++ cryptography library. Prior to 3.12.0, certain patterns of indefinite length encodings in BER data could cause quadratic behavior in the parser, resulting in a denial of service. Such BER encodings were accepted even in structures which are required to be encoded as DER, which prohibits indefinite length encodings. This vulnerability is fixed in 3.12.0."}],"metrics":{"cvssMetricV40":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":6.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-407"}]}],"references":[{"url":"https://github.com/randombit/botan/security/advisories/GHSA-7q2v-3g27-6g3j","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44460","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.707","lastModified":"2026-05-27T18:16:23.707","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. Prior to 3.12.0, /api/totp_setup.php is callable from a session that has only passed the password check (state pending_login_user). When the target account already has TOTP configured, the endpoint decrypts and returns the user's existing TOTP secret inside the QR PNG instead of refusing or generating a new secret. An attacker who already possesses the victim's password can therefore retrieve the live TOTP secret, derive a valid one-time code, submit it to /api/totp_verify.php, and obtain a fully authenticated session without ever possessing the victim's authenticator device. This vulnerability is fixed in 3.12.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-200"},{"lang":"en","value":"CWE-287"},{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/error311/FileRise/security/advisories/GHSA-84hw-8g73-v3f8","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-44521","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:23.953","lastModified":"2026-05-27T18:16:23.953","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"elFinder is an open-source file manager for web, written in JavaScript using jQuery UI. Prior to 2.1.68, an authenticated SQL injection vulnerability in the elFinder MySQL volume driver (elFinderVolumeMySQL) allows any logged-in user, including users with read-only access to the affected volume, to inject SQL through a crafted target file hash. Successful exploitation can lead to unauthorized data disclosure and denial of service. This vulnerability only affects installations configured to use the MySQL volume driver. This vulnerability is fixed in 2.1.68."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/Studio-42/elFinder/security/advisories/GHSA-c3gj-q88f-7hqj","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45047","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:24.150","lastModified":"2026-05-27T18:16:24.150","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"bird-lg-go is a BIRD looking glass in Go. Prior to 1.4.5, the apiHandler (and similarly webHandlerTelegramBot) processes user-provided JSON payloads by directly using json.NewDecoder(r.Body).Decode(&request) without restricting the maximum read size. An unauthenticated remote attacker can stream an extremely large, endless JSON payload (e.g., several Gigabytes of padding) over a single TCP connection. Because Go's JSON decoder attempts to allocate memory for the entire parsed structure, this rapidly exhausts the host's physical RAM or container limits, leading to an unrecoverable fatal error: runtime: out of memory. This vulnerability is fixed in 1.4.5."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"references":[{"url":"https://github.com/xddxdd/bird-lg-go/security/advisories/GHSA-39qr-rc93-vhqm","source":"security-advisories@github.com"}]}},{"cve":{"id":"CVE-2026-45081","sourceIdentifier":"security-advisories@github.com","published":"2026-05-27T18:16:24.433","lastModified":"2026-05-27T18:16:24.433","vulnStatus":"Received","cveTags":[],"descriptions":[{"lang":"en","value":"Frappe HR is an open-source human resources management solution (HRMS). Prior to 16.5.0, authenticated employees could access other employees’ leave details due to improper authorization checks. This vulnerability is fixed in 16.5.0."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://github.com/frappe/hrms/security/advisories/GHSA-9jpf-5vrm-hpcj","source":"security-advisories@github.com"}]}}]}